Migration from Banner to Workday

[Colin Abbott <colin.abbott () MCGILL CA>]

Hello,

  We are embarking on our migration from Banner HR to Workday and I was wondering if anyone on this list has already 
gone through this project and has lessons learned to share relating to security?

 A few questions that we are looking at:

 -Which option have you chosen to secure APIs?

 -Is the day to day security management of user access managed by the business or central IT? 

 -Are you using multi-factor authentication?

 - Do you integrate any data/logs from Workday into your SIEM?

 - Do you use a cloud access security broker?

 - Do you do any anonymization of data in non-production environments?

 - Do you mask any PII data in production?

 - Did you need to adapt any security policies for Workday?

 - What was your biggest challenge in the implementation relating to security?

 - Anything that you would do differently relating to security?

Thanks
Colin Abbott, CISSP  | IT Security Architect  | McGill University | Network and Communication Services | 514-398-5070