Just as an introduction, I am mid level cyber security analyst for an enterprise level customer. This is not my first job in IT or cybersecurity. My employer has forced 100% of the workers to return to the office while simultaneously cutting pay from a large percentage of the workforce, thankfully IT is not included in that. However, the lack of remote option and lower pay for certain workers has created an extremely disgruntled and scared workforce.
With that introduction out of the way, i want to dive into my issue. I was recently asked to monitor a few websites pertaining to a community of workers who are working toward unionization. The request is to generate a report or rule via our SIEM whenever someone hits these sites within the company network. Now of course I have done this type of monitoring for sites with illegal or non work appropriate behavior in the past, but this isn’t illegal activity. I’m actually somewhat concerned that what I am being asked to do may be illegal labor organization is legal in my country. I was curious if anyone else in this community has been asked to do this before? If so, how did you handle it and what advice might you have for my specific situation.