Changes in cybersecurity by Forced Teleworking. A practice-based approach to the changes in cybersecurity practices under coronavirus restrictions.

Governmental response to the worldwide coronavirus pandemic is causing large and potentially lasting changes to society. One of these changes set in the Netherlands policy of forced teleworking. In order to mitigate the spread of the virus, all non-essential workers are to work from home, where possible. This policy has an effect on a large amount of subjects, one of which is cybersecurity. For this thesis research was performed into how this forced teleworking changed cybersecurity. Data for this research was attained by performing interviews with eight different people working from home due to these regulations. Criteria for the selection of these respondents were that they (1) were available to interview under current regulations, (2) needed to have worked the same function before being forced to telework, (3) were forced to work from home due to these regulations, (4) have co-workers, (5) have a basic understanding of the computer systems they operate and (6) need to have work functions that provide access to sensitive data. This research was performed by way of looking through the lens that is practice theory and the transcript of the interviews were analysed by means of constructivist grounded approach. The results of this research suggest that companies were relatively well prepared in the field of both hardware and software. Both these elements provided little to no problems when the forced teleworking started, and regulations that were in place, could largely be transposed to a teleworking situation. There were some issues however with the willingness of employees to combat IT-related issues, when an IT-department proved unresponsive or incapable of providing adequate technical support. Problems arose in the absence of coworker closeness, and the absence of a physical security boundary in employee’s homes, leading to possible data-breaches. In addition, external factors such as fear of catching the coronavirus proved to be possible stress factors, which could lead to unsafe digital practices.