The COVID-19 pandemic caused a rapid transition to work-from-home (WFH) in early spring 2020, with distributed workforces challenging IT infrastructures not designed to support such volumes of remote employees. As a result, the priority of IT operations teams was to keep the lights on and the business going. The rush to operationalize remote work did not afford the time to conduct the usual level of due diligence associated with a range of issues: scaling VPN infrastructure, tightening access/authentication policies and process, vetting personal devices not configured to corporate standards, assessing home network vulnerabilities, leveraging insecure collaboration software, and expanding cloud usage