Hybrid work is here to stay. It's time for security to catch up to our new normal.

Organizational inertia has a way of resisting societal trends. Even after the COVID-19 pandemic forced businesses to drastically alter how they operated after their workers stayed home or even dispersed all over the globe, organizations are still struggling to adapt to this new normal.

Efforts to entice – or even outright force – workers back to the office presume that one’s physical presence improves an organization’s work and culture. Less has been discussed on why such attempts could also reveal enduring fears regarding security. When workers aren’t working within the confines of the formalized workplace, this line of thinking goes, they and their work are simply less secure.

There is anecdotal data to back this up. During the pandemic, when more workers were working from home, people seemed to make generally riskier decisions – drinking more, taking on more debt – that would also call into question the handling of sensitive data. But is it really the case that working from home is riskier, from a security standpoint?

Opinions in your inbox: Get exclusive access to our columnists and the best of our columns

My RAND Corporation colleagues and I studied how pandemic-related shifts might affect the process by which an organization identifies risk in workers. Specifically, we looked at the element of U.S. national security that investigates individuals before granting them a security clearance.

Security practices haven't caught up

The Security Clearance, Suitability, and Credentialing Performance Accountability Council oversees practices across the federal government, with the goal of improving its approach to risk management. Like so many other organizations, the council and other investigative agencies had to change with the times by moving more – but not all of – their work online.

Security clearance personnel we interviewed reported that a significant source of delays in processing clearances had to do with there being only a few fingerprinting locations, many of which were closed during the height of the pandemic, leaving some people with effectively no way to get clearance. This bottleneck likely reflected a process requirement for physical identical verification, and lack of agility to pivot to digital identity verification.

Bad news, remote workers: You need to return to the office for your employer to succeed

'A breath of fresh air': How a 4-day workweek is helping us and our employees

Zillow CEO: Traditional offices are as outdated as typewriters. Employers need to adapt.

But the failure to adapt illustrated a broader problem: Security practices haven’t yet figured out an elegant, digital alternative to physical requirements such as in-person fingerprints.

Doing so might smooth the transition to hybrid workplaces. It could also lead to better security.

Hybrid work is the new normal

As hybrid work becomes the new normal, workplace practices – security-focused and otherwise – may need to rethink whether physical presence necessarily improves either security or work outcomes. Relying on employee stewardship of physical assets has always been dubious.

Laptops containing sensitive files are lost or stolen from cars. Prototype smartphones keep getting left in bars. It’s easy for workers to lose track of the documents they bring home – at least until the National Archives come calling.

And movie screener copies physically mailed to Oscar voters were long a direct pipeline that fueled online film piracy. But here, by contrast, this year the Academy of Motion Picture Arts and Sciences switched to digital screeners only, and as a result the number of pirated films via Oscar screens was effectively cut to zero.

Opinion alerts: Get columns from your favorite columnists + expert analysis on top issues, delivered straight to your device through the USA TODAY app. Don't have the app? Download it for free from your app store.

Going digital can, in certain ways, help organizations manage risk. Digital copies of sensitive information can be tracked, sit relatively safe in the cloud, or if downloaded onto a device that is lost can often be wiped from afar. Intelligence experts, for example, have called for greater digitization of sensitive information.

Most people already subscribe to a widespread form of digital security, sending their money via electronic transfer or app rather than through the mail.

As recession looms, forget layoffs: Workers – and businesses – need flexible schedules

A reality check on the American workforce: Time to invest in people with disabilities

Don't insult fellow conservatives: Candace Owens is wrong. Women like me who use wheelchairs can – and should – model underwear.

Certainly there remain serious security concerns with digital data, including the potential for misuse, theft, leaks or hacks. And requiring digital platforms or online access to work, or even apply to positions, runs the risk of leaving some people behind, like those who can’t afford broadband internet or those with disabilities.

Yet, just as technological innovations like ChatGPT stoke debate over what is work, organizations will increasingly grapple with where and how to keep everyone’s work product safe.

Security practices should, quite simply, strive to support everyone who works, wherever they are. Updating such practices for the digital age would go a long way toward that goal.

Douglas Yeung is a senior behavioral scientist at the nonprofit, nonpartisan RAND Corporation, and a member of the Pardee Rand Graduate School faculty.

You can read diverse opinions from our Board of Contributors and other writers on the Opinion front page, on Twitter @usatodayopinion and in our daily Opinion newsletter. To respond to a column, submit a comment to letters@usatoday.com.

This article originally appeared on USA TODAY: Work from home is our new normal, but it brings security challenges