Heroes of HR

Why Passwords Are Dying and What That Means for Payroll, HR, and Security


Listen Later

Security is no longer an IT problem. It is a business problem. As companies scale globally, adopt cloud infrastructure, and rely more heavily on AI, the attack surface keeps expanding. This conversation looks at how payroll and HR platforms are evolving alongside rising cybersecurity threats, from spoofing and credential theft to the growing risks of BYOD environments. It also digs into why legacy security models are breaking down and what modern organizations need to do differently to protect both systems and people.

In this episode, we talk about the evolution of P&I, cybersecurity threats, passkeys and biometrics, cloud security, penetration testing, AI-driven protection, spoof sites, and managing security in a BYOD world. The discussion moves from how payroll platforms have scaled globally, to why passwords are failing, to how AI and vetted applications can reduce risk while still improving user experience.

Key Takeaways

  • P&I’s evolution from a regional provider to a global platform reflects a broader shift in payroll and HR technology. Scale introduces complexity, and complexity demands stronger security foundations. Global payroll is no longer just about compliance. It is about resilience.
  • Passwords are becoming a liability. Passkeys and biometric authentication reduce friction while closing common attack vectors tied to credential reuse and phishing. Simpler login experiences can actually improve security when implemented correctly.
  • Cybersecurity threats are more sophisticated and more deceptive. Spoof sites and impersonation attacks are increasingly common, targeting both employees and administrators. Education alone is not enough. Systems must be designed to assume users will be targeted.
  • Penetration testing and continuous security assessments are essential, not optional. Cloud environments move too fast for static defenses. Organizations need ongoing validation that their controls actually work under real-world attack scenarios.
  • BYOD environments introduce convenience and risk at the same time. Strong policies, vetted applications, and clear boundaries are critical to protecting sensitive data without killing productivity. Security has to meet users where they are.
  • AI is becoming a force multiplier for security and operations. When used responsibly, it can help verify information, detect anomalies, and improve client interactions. The risk is not AI itself. The risk is deploying it without guardrails or trust.
  • This episode was recorded live at isolved Connect in Philadelphia, Pa. 

    The Heroes of HR podcast is a limited series sponsored by isolved. isolved is an HCM platform that modernizes HR, benefits, and payroll across Healthcare, Hospitality, Manufacturing, and more.

    Learn more about isolved: ⁠https://www.isolvedhcm.com/⁠


    Chapters

    00:00 Who is Nicholas Holcomb

    01:16 Overview of P&I and Global Expansion

    02:45 Cybersecurity Challenges and Strategies

    04:10 The Shift from Passwords to Passkeys

    08:12 Penetration Testing and Cloud Security

    11:33 Emerging Cyber Threats and Spoofing

    14:17 The Role of AI in Modern Business

    18:17 Managing BYOD and Security Policies


    Guest

    Nicholas Holcomb, PNI, HCM

    LinkedIn: https://www.linkedin.com/company/pnihcm/


    Connect with Us

    William Tincup: https://www.linkedin.com/in/tincup/

    Ryan Leary: https://www.linkedin.com/in/ryanleary/

    ...more
    View all episodesView all episodes
    Download on the App Store

    Heroes of HRBy WRKdefined Podcast Network