"It Could've Been Anyone": Close Your Security Gaps Before Marcus Finds Them

In this jaw-dropping episode of HR Confessions, Rebecca and Kim unpack a story that will make every HR professional immediately change their passwords. When a meticulous HR manager discovers someone has been redirecting her paycheck, she uncovers a web of identity theft, pharmaceutical side hustles, and company devices being used for... let's say "extracurricular activities." Join us for a wild ride through one employee's audacious attempt to literally become their HR manager, plus actionable advice on protecting your organization from internal threats. Warning: You'll never look at password resets the same way again.

Key Takeaways:

• Understaffed HR departments create significant security vulnerabilities
• Password security training and two-factor authentication are essential
• Background checks only reveal documented incidents
• Document everything when dealing with employee misconduct
• Know when to stop trying to convince someone and just take action
• Company devices are heavily monitored – the opposite of burner phones
• HR professionals need time for strategic work, not just paperwork

Action Items for HR Leaders:

• Enable two-factor authentication on all HR platforms
• Implement regular password security training
• Ensure adequate HR staffing to maintain organizational oversight
• Create crisis response procedures for security breaches
• Never let anyone watch you type passwords
• Consider reference checks beyond background checks