Re: Identity
That's nice, but it depends how much pushback the hiring managers give. If they claim they can't hire the right person, then a remote candidate might be their "only" option. Let's be perfectly honest, most managers are focused on short-term financial results, and security is an annoyance - until they destroy the company.
As usual, in most businesses, things are far more messy than a security person's theoretical operating procedure would like.
"They're working on project x so just give them access to all the files for that customer in case they need to refer back to previous work we did for them"
"They need to access Google drive because customer y demands we use it to share data with them"
"Please install z video conferencing client because this customer refuses to use Teams"
Even where we've got no staff with admin privileges on their machines, and AppLocker locking down what can be executed, with enough time there are ways around all this.
I'm going to assume Snowden was office based, and yet Iook what happened... The problem with remote working is that it makes all this stuff so much easier for a rogue employee.
Tip: Watch out for candidates asking your hiring teams to visit their personal websites - had one of those this week and it was trying to install ransomware...