Dive Brief:
- Talent Management and HR (TLNT) reports that human resource information systems (HRIS) and applicant tracking systems (AST) are among the biggest targets for cyber thieves. Single records of data sell for $50 a piece on the black market.
- HR technology is filled with personally identifiable information (PII), or data that can be used alone or with other data to identify someone, says TLNT. Names, Social Security numbers, birth places, a mother’s maiden name and biometric information are examples of PII.
- TLNT says cybercrime has shifted away from attacking individuals’ information to breaking into mass databases, such as retailers like Target’s.
Dive Insight:
Cybersecurity, while usually in IT's corner, has increasingly become an HR problem due to the department's hold on important data and the fact that human error is one of the largest reasons behind cyber breaches. Proper education of employees is key, but it must be ongoing to be effective.
But now that HR increasingly uses the cloud for its tech, choosing the right vendor will matter, too. TLNT advises HR to vet vendors thoroughly by asking them where are they hosting data. If it’s on an SaaS platform, they’ll need extra security. HR also should ask vendors for certification.
