It is our pleasure to announce support for Workday in the Obsidian CDR platform! This highly anticipated release extends Obsidian’s industry-leading unified visibility, monitoring and protection capabilities to Workday. Obsidian offers a simple solution to continuously protect Workday and other SaaS applications against breaches, attacks, and insider threats without impacting productivity. With Obsidian, security teams have the data they need to ensure that the right employees have the right access privileges to Workday and they are doing the right things with that access. This blog post provides an overview of our protection for Workday.
Workday is the leading enterprise SaaS solution for financial and human capital management, used by organizations around the world as their solution for financial management, human capital management, and planning. Because of this, Workday holds some of the most sensitive information in an organization. This includes employee details, financial accounting, bank account details, payroll, contracts, vendor relationships, and more.
Protecting this data is a top business priority. Accidental or intentional data breaches can cause financial loss, severely erode trust, compromise business secrets, and trigger steep penalties under regulations such as GDPR and CCPA. Not surprisingly, attacks in the cloud are on the rise. Attackers are sending targeted malware phishing email to customers impersonating Workday. According to the latest Verizon DBIR report, 37% of all breaches involved stolen credentials and 22% involved phishing. 30% of the breaches involved an insider.
Security teams need to defend their Workday environments against insider threats, compromised accounts, data leakage, insufficient security awareness, and service misconfigurations in this time of heightened security threats.
SaaS applications are simple to deploy and operate, yet security of SaaS applications is anything but simple. Let us look at some of the key challenges in securing Workday:
In order to protect against breaches, insider threats, and data exposure, security teams must first have visibility. They must ensure that SaaS applications are configured properly and are being used appropriately according to security best practices. Obsidian delivers a simple yet powerful security solution for SaaS applications based on a new approach called cloud detection and response (CDR). With Obsidian, security teams can continuously monitor user activity, protect against data breaches, and detect and respond to insider threats and account compromise.
To do this, Obsidian connects with Workday and other SaaS applications like Salesforce, Microsoft 365 (previously Office 365), G Suite, and Box to seamlessly aggregate data about accounts, privileges and activity. The platform normalizes and analyzes the data using machine learning and expert analysis to detect account compromise, insider threats, access misuse, data leaks, excessive privileges and weak posture. Security teams have unified access to activity data across Workday and other SaaS applications to investigate and respond to incidents.
Obsidian’s Workday integration lets security teams not only monitor who is using the service but how they are using it. Obsidian generates insights and alerts related to a variety of risks and threats:
Obsidian’s integration with Workday not only provides visibility, monitoring, and protection for Workday, but also uses HCM data from Workday to improve overall security of other SaaS applications.
Obsidian is delivered as a SaaS solution and doesn’t require installing any software or agents. Customers can start in minutes with API-based connectivity and get instant visibility and security insights into their Workday environments. With Obsidian, security teams have access to the data they need for continuous monitoring without getting into the live Workday environment and impacting business users in any way.
We continue to build deep integrations with leading SaaS applications and security products like Okta and CrowdStrike to simplify security in a cloud-first world. In a follow-up blog post, we will get into specific security capabilities that Obsidian offers Workday customers.
In the meantime, we leave you with the following resources to learn more about Obsidian for Workday: