I was applying for a personal loan on a different bank’s website and they asked me to provide proof of employment and it took me directly to Workday to login. I didn’t realize it was a problem until I received an email saying that I needed to let them know if I did this or not so I told them I recognized the activity and they said no further action required except now you need to just change your password because you access to workday on a third-party site. I’ve never had this happen. They also CCed my manager. I’m wondering if anything else is going to come of this?
6 replies (most recent on top)
You might have to do training courses and the higher ups know and track this stuff.
Yes a couple of times. I would try to send emails to my home for my records. After the second time it happened and my manager spoke to me I just started to print what I wanted. If the concern was proprietary information leaving the bank it didn't really work. I retired instead of going back into the office I went to drop off my laptop and stuff and they brought out my desk contents there was so much proprietary information I almost sent it to friend of mine at PNC.
Happened to me several times, mostly for sending articles to friends and former colleagues outside the bank. Or PDF documents, like the Employee Handbook, to myself at home. (for MY records, TYVM). Oh! and and a bunch of times, I sent a request to Vendor that was not sent via "SecureMail), b/c the protocol is so cumbersome to follow and I was in a hurry, b/c I am doing 3 jobs for people who left and were not replaced.
Manager cc'ed each time.
I calmly explained what I had done and why.
He said to not do it again.
I replied, "Noted. But we need some f-ing help around here."
Nothing more happened. I assume he had to take a precious minute to either log onto to some HR system that a convo had occurred, but more likely simply had to respond to InfoSafe mailbox that he had "Taken Action" for their own documentation.
Muast says, does sound odd that a 3rd party would ask you to do what you did. For my HELOCs and Refinancings, I just give them the Employee Verification phone number and tell them to do their Due Diligence. They either want my business or not. Plenty of hungry providers out there looking to give me money to borrow and charge fees.
Happened to me the other day applying for a HELOC from a very major player in the mortgage industry. Said they could verify employment via a login to Workday. It came up with SSO. I logged in, it said "thank you" and closed as successful verification. A few minutes later I got a phone call on my bank phone from a guy who asked me if I had recently logged into Workday from a personal device. I ran him thru Associate Verification, he was legit. he told me I needed to reset my password immediately. He even provided me the INC number. He stated that the bank has no control over Workday's use beyond what is available via HR/Flagscape.
I had it happen once. I was logging into workday on my personal phone to get a paystub and had my browser on private so it triggered an event. I said I recognized it and told my manager my bad and they never mentioned it again
That does sound shady that another bank wanted you to login to your work just to prove you work there. Odd.