Predictions for 2021, and for what remains of December
By consensus, remote work will remain the norm in 2021 (and it will probably remain widespread even after the pandemic eases). But a CyberArk study suggests that companies have their work cut out for them dealing with unfortunate remote worker security habits. The personal and professional seem harder to keep apart while working online, and poor personal security practices (like sharing passwords and devices with family members) make that blurred boundary risky territory. Distracted minds make security mistakes, and there are plenty of distractions at home: "45% of remote employees cite disruption from family and pets as the biggest challenge of remote work, followed by balancing work and personal life (43%) and ‘Zoom fatigue’ (34%)."
An ImmuniWeb study finds other security issues with working from home. The company thinks remote work, with reduced face-to-face contact and fewer opportunities for quick, responsive, even serendipitous collaboration, will raise problems for DevSecOps.
With respect to law and policy, JD Supra predicts that the US Cyberspace Solarium Commission's report will serve as a reliable guide to their evolution. (As CSO points out, the Commission's report has already influenced the US National Defense Authorization Act.)