Identity & Access Management
Remote hiring and SaaS telemetry become part of identity defense
Microsoft published detection guidance for North Korea-aligned remote IT worker activity, including signals in Workday, communications platforms and Microsoft 365. This extends identity monitoring into HR SaaS, external recruiting flows and post-onboarding activity.
Security teams should coordinate with HR and identity owners because an account created through a normal hiring process can still become a trusted access path for data theft or follow-on compromise.