Spotlight on home-office connectivity intensifies in 2021

Work-from-home users to get more sophisticated network hardware and software as enterprises consider options such as SD-WAN and SASE.

Neon world networking
Thinkstock

Now that it's clear remote work is here to stay, what are the technology priorities for IT departments charged with keeping the enterprise workforce productive and secure?

In a December report, research firm Gartner said it expects 48% of employees will work from home, even after the pandemic, compared with 30% pre-pandemic.

Forrester, too, expects the remote worker population to remain elevated. "While there is no clear end point to the pandemic yet, the number of employees working remotely will begin to dwindle, eventually settling in at 300% of pre-pandemic levels at the minimum," wrote Forrester principle analyst David Johnson, in a blog post about 2021 remote work and automation trends.

"With that many people working remotely long-term, companies will need to rethink what that experience is like — not just from a technology and environment perspective but from leadership, change management, and career-growth perspectives, as well," Johnson wrote.

That shift can put extra pressure on enterprise IT groups tasked with locking down remote-office connectivity and security.

"As the pandemic wears on, we are seeing organizations solidifying their plans for remote working, including adding more sophisticated hardware and software for work from home, with primary drivers including security and productivity," said Neil Anderson, senior director of network solutions at World Wide Technology, a technology and supply chain services company.

"For IT, this means quickly assessing and deploying new cloud-based security models and building trust quickly in a solution," Anderson said. "We're also seeing a lot of interest in experience monitoring and optimizing software to put better analytics in place around what the home-office employee app performance is like and how to make it better."

While individuals have limited options to speed up their home-office connectivity, IT can step in to provide enterprise-grade services to high-value workers for whom every minute with clients, customers, and coworkers counts, wrote Jean-Luc Valente, Cisco vice president, product management, enterprise routing and SD-WAN, in a blog post about the future of home office connectivity.  

"The high-value workforce needs superior connectivity that makes working at home just as fluid as being in the office with consistent connectivity and performance. What was once 'good enough' for occasional evening and weekend work-at-home stints is no longer adequate," Valente stated.

How IT can upgrade home-office setups

When tasked with upgrading workers' home offices, IT needs to look for a variety of features, Valente says. Those include:

  • Centralized policy management and zero-touch provisioning to bring thousands of remote offices online quickly.
  • Monitoring of quality of service (QoS) and remotely troubleshooting connection reliability to enhance application experience from non-standardized home internet connections and Wi-Fi to cloud and SaaS resources.
  • Centralized, cloud-delivered, multi-layer security—including DNS URL-filtering, application aware firewall, intrusion protection system, and advanced malware protection—to protect sensitive traffic on its round trip from home offices to cloud or data centers and back.
  • Ability to automatically detect and define devices connecting to the home office network and apply segmentation policies to control access permissions and prevent infections from spreading from home offices and to corporate resources.

One of the most accessible technologies that can offer these features is SD-WAN, which is available from a number of vendors including Cisco, VMware, Extreme, Juniper, Aruba and others.

Cisco offers a package called Remote Workforce Routing that offers zero-touch onboarding of all remote workers' wired and wireless devices and the company's wireless LTE Advanced PRO for backup connectivity. The bundle also features Cisco's SD-WAN Cloud OnRamp and Umbrella security support to let users access applications remotely and securely, Cisco says.

The package supports split tunneling that lets customers select specific, enterprise-bound traffic to be sent through a corporate VPN tunnel. The rest goes directly to the internet without going through the tunnel.

"A split-tunnel configuration over a single WAN interface or second WAN interface over LTE provides redundant connectivity. IT can continuously monitor the edge-to-SaaS performance on both DIA and backhaul paths to ensure appropriate application Quality of Experience and consistent connectivity," Valente stated.

Another example is VMware's SD-WAN Zero Trust Service, which is delivered through VMware's service-node network deployed across more than 100 global locations and operated by VMware and its 120 telecom service-provider partners. It will also become part of the VMware Workspace ONE Intelligent Hub. According to VMware, the Workspace ONE platform securely manages end users' mobile devices and cloud-hosted virtual desktops and applications from the cloud or on premises.

The remote-access client automatically connects to the closest VMware SD-WAN cloud PoP. Based on enterprise policy, the user traffic may be passed to a cloud firewall, a web security service, to another enterprise branch or data center, or to an application or service that's needed. The VMware service also employs split tunneling.

Home-office security options

While offering strong connectivity options will be key for remote/home-office users, security obviously plays a big role as well. 

"WWT is seeing a move to cloud-delivered security models like SASE and zero-trust models. Instead of trying to deploy thousands of security stacks in home offices, enterprises instead are routing their sessions to a cloud-edge service, to more easily achieve scalable security. For IT, this means quickly assessing and deploying new cloud-based security models and building trust quickly in a solution," Anderson said.

According to Anderson, there are several schools of thought on how to approach home-office security, including traditional methods such as VPN clients, home-based router/FW, and virtual desktop infrastructure (VDI), as well as emerging approaches such as zero-trust networking.

"Of all of these home-office security methods, we are spending the most time with clients on zero trust and VDI, with a few of our largest clients also working seriously on home-based router/FW solutions as well," Anderson said.

Cisco's Valente says that a cloud-based Secure Access Service Edge (SASE) umbrella provides security protections at scale for thousands of remote workers.

"Policy-based routing also secures access to confidential as well as non-sensitive data while protecting against man-in-the-middle attacks," Valente says.   

"Because policies are managed and deployed centrally through SD-WAN controllers, when workers move among home, branch, and campus locations, the access and security policies follow them, ensuring that their connections are secure regardless of location. IT gets a single-pane view of workforce connectivity and security to simplify the management of thousands of distributed connections," Valente stated.

For some organizations, a managed approach to remote-worker security may be the best option.

"Though many companies are moving towards a zero-trust environment, small and medium-sized businesses (SMBs) often don't have the resources needed to make this shift quickly," said Mike Puglia, chief strategy officer with management software vendor Kaseya. "In 2021, we'll likely see SMBs rely more heavily on managed service providers, as MSPs have the IT expertise and economies of scale needed to provide the security capabilities required in this remote work environment."

What else is in the future for remote/home office users? 5G is one possibility.

"5G still isn't mature enough to see widescale deployments; most organizations are still relying on a single home broadband connection. However, as 5G continues to mature and devices become more readily available, remote workers may come to rely on the next-gen network as an alternative to home broadband," Anderson said. "Imagine the home network 'splitting'—with wired broadband continuing to serve the home network, and 5G serving the home office user, improving the quality of experience for collaboration tools. It may also serve as a backup connection for remote workers, much like how businesses support branch offices today."

Automation will be another area of increased activity.

Companies will focus their automation efforts on helping remote employees be more effective, with one in four information workers receiving help from software bots, robotic process automation, and AI while some frontline workers receive help from physical robots, according to Forrester's Johnson. "HR leaders will get support from better tools for analyzing and acting on workforce data while also assuring employees' health and wellness," Johnson said.

In the big picture, providing office-like connectivity and security to home workers will remain a priority for enterprises, Valente says.

"WFH is not just a reaction to a health and safety emergency either. It is a workstyle made possible by technology that has important energy and environmental impacts as well as physical and mental health—does anyone really love commuting?" Valente asks. "The more seamless a work-at-home employee’s connection is to information, applications, and coworkers, the more productive the experience."

Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.

Copyright © 2021 IDG Communications, Inc.

IT Salary Survey: The results are in