What is the official website of Workday for Public Sector ?

The official website of Workday for Public Sector is https://www.workday.com/en-us/solutions/industries/public-sector.html.

What is Workday for Public Sector's cybersecurity risk score?

Workday for Public Sector has an AI-generated cybersecurity risk score of 750 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has Workday for Public Sector experienced?

According to Rankiteo, Workday for Public Sector currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has Workday for Public Sector been affected by any supply chain cyber incidents ?

According to Rankiteo, Workday for Public Sector has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does Workday for Public Sector have SOC 2 Type 1 certification ?

According to Rankiteo, Workday for Public Sector is not certified under SOC 2 Type 1.

Does Workday for Public Sector have SOC 2 Type 2 certification ?

According to Rankiteo, Workday for Public Sector does not hold a SOC 2 Type 2 certification.

Does Workday for Public Sector comply with GDPR ?

According to Rankiteo, Workday for Public Sector is not listed as GDPR compliant.

Does Workday for Public Sector have PCI DSS certification ?

According to Rankiteo, Workday for Public Sector does not currently maintain PCI DSS compliance.

Does Workday for Public Sector comply with HIPAA ?

According to Rankiteo, Workday for Public Sector is not compliant with HIPAA regulations.

Does Workday for Public Sector have ISO 27001 certification ?

According to Rankiteo,Workday for Public Sector is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does Workday for Public Sector operate in ?

Workday for Public Sector operates primarily in the Software Development industry.

How many employees does Workday for Public Sector have ?

Workday for Public Sector employs approximately 23 people worldwide.

Does Workday for Public Sector own any subsidiaries ?

Workday for Public Sector presently has no subsidiaries across any sectors.

How many LinkedIn followers does Workday for Public Sector have ?

Workday for Public Sector's official LinkedIn profile has approximately 13,506 followers.

What is the NAICS classification code for Workday for Public Sector ?

Workday for Public Sector is classified under the NAICS code 5112, which corresponds to Software Publishers.

Does Workday for Public Sector have a Crunchbase profile ?

No, Workday for Public Sector does not have a profile on Crunchbase.

Does Workday for Public Sector have a LinkedIn profile ?

Yes, Workday for Public Sector maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/workday-for-public-sector.

How many cybersecurity incidents has Workday for Public Sector experienced ?

As of June 16, 2026, Rankiteo reports that Workday for Public Sector has not experienced any cybersecurity incidents.

How many peer or competitor companies does Workday for Public Sector have ?

Workday for Public Sector has an estimated 30,085 peer or competitor companies worldwide.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

WPS

Boost Score +25 with badge (5 left)

750

/1000

Fair

775

/1000

Fair

Workday for Public Sector Vendor Cyber Rating & Cyber Score

workday.com

Add Your Compliance Badge

Workday provides enterprise cloud applications for finance, human resources, payroll, budgeting, and analytics to help public sector organizations and federal agencies hire and develop a diverse workforce, budget and forecast for long-term sustainability, and adapt more quickly to change. Learn more: https://www.workday.com/en-us/solutions/industries/public-sector.html

WPS A.I CyberSecurity Scoring

Scoring History

WPS

Workday for Public Sector CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

No data available

Loading…

A.I.

WPS Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for WPS

Incidents vs Software Development Industry Avg (This Year)

No incidents recorded for Workday for Public Sector in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for Workday for Public Sector in 2026.

Incident Types WPS vs Software Development Industry Avg (This Year)

No incidents recorded for Workday for Public Sector in 2026.

Incident History - WPS (X = Date, Y = Severity)

Loading…

SUBSIDIARY

Workday for Public Sector Subsidiaries

Parent Company

WPS

Software Development

Website: https://www.workday.com/en-us/solutions/industries/public-sector.html

Company Size: 23

No subsidiary data available for this company.

Loading…

Workday for Public Sector Similar Companies

Canva

canva.com

We're a global online visual communications platform on a mission to empower the world to design. Featuring a simple drag-and-drop user interface and a vast range of templates ranging from presentations, documents, websites, social media graphics, posters, apparel to videos, plus a huge library of fonts, stock photography, illustrations, video footage, and audio clips, anyone can take an idea and create something beautiful on Canva on any device, from anywhere in the world. Since our launch in 2013, we’ve had the crazy big goal of making design accessible to everyone. We were founded on the belief that people shouldn't need to understand complex software to unlock their creativity. We’re leveling the playing field and democratizing access to design and visual communication by empowering 100% of the world to communicate in a way that was once limited to the 1%. We've always had a deeper mission surrounding Canva — which we talk about as our 'simple' two-step plan: to build one of the world’s most valuable companies, and to do the most good we possibly can. We're committed to our core value of Being a Force for Good, so as the value of our company grows, so too does our ability to have a positive impact on the world.

NiCE

nice.com

NiCE is transforming the world with AI that puts people first. Our purpose-built AI-powered platforms automate engagements into proactive, safe, intelligent actions, empowering individuals and organizations to innovate and act, from interaction to resolution. Trusted by organizations throughout 150+ countries worldwide, NiCE’s platforms are widely adopted across industries connecting people, systems, and workflows to work smarter at scale, elevating performance across the organization, delivering proven measurable outcomes.

SAP

cb sap.com

SAP is the leading enterprise application and business AI company. We stand at the intersection of business and technology, where our innovations are designed to directly address real business challenges and produce real-world impacts. Our solutions are the backbone for the world’s most complex and demanding processes. SAP’s integrated portfolio unites the elements of modern organizations — from workforce and financials to customers and supply chains — into a unified ecosystem that drives progress. SAP privacy statement for followers: www.sap.com/sps Our Community Guidelines At SAP, we're committed to fostering meaningful conversations that respect everyone in our community. To maintain a positive environment, we moderate comments that: • Target individuals personally, including our employees, customers, or partners • Contain discriminatory, harassing, or threatening language/content • Share personal information without consent • Promote misinformation or spam or 3rd-party links We believe in open dialogue and constructive feedback, but we will remove content that violates these guidelines without notice. We appreciate your understanding and contribution to a respectful community. For questions about our moderation practices, please DM or contact us at [email protected].

Expedia Group

expediagroup.com

At Expedia Group (NASDAQ: EXPE), we believe travel is a force for good – it opens minds, builds connections, and bridges divides. We create transformative tech that enables unforgettable experiences for all travelers, everywhere. Our trusted family of brands are known and loved by millions, and we power more trips than anyone else. To learn more about our vision of a more open world through travel, visit www.expediagroup.com. We’re committed to providing an inclusive and accessible recruiting experience for candidates with disabilities, or other physical or mental health conditions. If you require an accommodation or adjustment for any part of the application or recruitment process, please let us know by completing our Accommodation Request Form or contacting your recruiter. Employment opportunities and job offers at Expedia Group will always come from Expedia Group’s Talent Acquisition and hiring teams. Never provide sensitive, personal information to someone unless you’re confident about who they are. We do not send job offers via email, or any other messaging tools, to individuals we have not had prior contact with. Our email domain is @expediagroup.com. Our official careers website, where you can to find and apply for job openings, is careers.expediagroup.com/jobs. If you require customer service support to cancel, change or ask about a refund for your trip, you can connect with our 24/7 Virtual Agent through the following links: Expedia: https://www.expedia.com/helpcenter Hotels.com: https://service.hotels.com/en-us/ Vrbo: https://help.vrbo.com/ For additional assistance, direct message us on Twitter @ExpediaHelp with your itinerary number and email address: https://twitter.com/ExpediaHelp

SS&C Technologies

ssctech.com

SS&C is a leading global provider of mission-critical, cloud-based software and solutions for the financial and healthcare industries. Named to the Fortune 1000 list as a top U.S. company based on revenue, SS&C (NASDAQ: SSNC) is a trusted provider to more than 22,000 financial services and healthcare companies, with over 27,000 employees and operations in more than 35 countries. Built upon a foundation of expertise, innovation and excellent customer service, SS&C powers some of the largest financial and healthcare firms in the world. +++++++++++++++++ ALPS Portfolio Solutions Distributor, Inc., ALPS Advisors, ALPS Funds and SS&C Technologies are affiliated. Distributed by ALPS Portfolio Solutions Distributor, Inc. AN INVESTMENT IN THE FUNDS INVOLVES RISK, INCLUDING LOSS OF PRINCIPAL. AN INVESTOR SHOULD CONSIDER INVESTMENT OBJECTIVES, RISKS, CHARGES AND EXPENSES CAREFULLY BEFORE INVESTING. TO OBTAIN A PROSPECTUS, WHICH CONTAINS THIS AND OTHER INFORMATION, CALL 1.877.398.8461 OR VISIT WWW.ALPSFUNDS.COM. READ THE PROSPECTUS CAREFULLY BEFORE INVESTING.

Snowflake

snowflake.com

Snowflake delivers the AI Data Cloud — a global network where thousands of organizations mobilize data with near-unlimited scale, concurrency, and performance. Inside the AI Data Cloud, organizations unite their siloed data, easily discover and securely share governed data, and execute diverse analytic workloads. Wherever data or users live, Snowflake delivers a single and seamless experience across multiple public clouds. Snowflake’s platform is the engine that powers and provides access to the AI Data Cloud, creating a solution for data warehousing, data lakes, data engineering, data science, data application development, and data sharing. Join Snowflake customers, partners, and data providers already taking their businesses to new frontiers in the AI Data Cloud.

Adobe

cb adobe.com

Adobe is the global leader in digital media and digital marketing solutions. Our creative, marketing and document solutions empower everyone – from emerging artists to global brands – to bring digital creations to life and deliver immersive, compelling experiences to the right person at the right moment for the best results. In short, Adobe is everywhere, and we’re changing the world through digital experiences.

Daraz

cb daraz.com

Founded in 2015, Daraz is the leading e-commerce platform in South Asia with operations in Pakistan, Bangladesh, Sri Lanka, Nepal, and Myanmar. It provides sellers and consumers with cutting-edge marketplace technology, targeting a rapidly growing region of over 500 million people. By building an integrated infrastructure covering e-commerce, logistics, payment and financial services, the company aims to deliver an immersive, personalized shopping experience and uplift South Asian communities through the power of commerce. Daraz has consistently invested in building an e-commerce ecosystem in South Asia through advancements in technology, logistics and digital payments. As digital penetration and consumer awareness have surged, the region is now ready for a transformative leap. Leveraging new-age advancements such as AI, Daraz is poised to further enhance the platform’s efficiency to enable a seamless experience for its consumers and sellers. Visit https://www.daraz.com/ to learn more.

Groupon

cb greenhouse.io

Groupon is an experiences marketplace that brings people more ways to get the most out of their city or wherever they may be. By enabling real-time mobile commerce across local businesses, live events and travel destinations, Groupon helps people find and discover experiences––big and small, new and familiar––that make for a full, fun and rewarding life. Groupon helps local businesses grow and strengthen customer relationships––resulting in strong, vibrant communities. E-commerce never stands still, our transformation strategy, combined with our strong brand, customer base, and marketplace expertise, ensures we are constantly adapting to the evolving market landscape while delivering value for our customers and merchant partners. Groupon is on a radical journey to transform our business. To meet our aggressive goals we are in the process of building a culture that prioritises fast decisions, open communication, and relentless pursuit of results. In the spirit of transparency, things aren't perfect, there are still processes to change and bureaucracy to break so we need people who want to be on this journey with us. Check out our current opportunities with #TeamGroupon and join us on our exciting mission to become The Ultimate Destination For Local Experiences and Services.

Loading…

NEWS

Workday for Public Sector CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

January 06, 2026 04:21 PM

No Doom, Just Disruption. A UK Playbook for Worker-Positive AI

Find out how prioritising human-centric governance and skills-based models can boost productivity in the UK and create better work for us...

Read Article

December 22, 2025 08:00 AM

A comprehensive list of 2025 tech layoffs

A complete list of all the known layoffs in tech, from Big Tech to startups, broken down by month throughout 2024 and 2025.

Read Article

December 17, 2025 08:00 AM

US government ‘tech force’ gets backup from Coinbase, Robinhood

Crypto exchange Coinbase and trading platform Robinhood are among a group of tech companies lending a hand to the US government's new “Tech...

Read Article

November 19, 2025 08:00 AM

Data Sovereignty in Europe: From Policy Debate to Practical Design

Europe is moving data sovereignty from debate to law. Discover how emerging EU rules, procurement standards, and sovereign cloud models—like...

Read Article

November 13, 2025 08:00 AM

Absa’s Johnson Idesoh named 2025 CIO of the Year

Johnson Idesoh, group CITO at Absa, has been crowned CIO of the Year at the 2025 CIO Awards. Absa's Johnson Idesoh named 2025 CIO of the...

Read Article

November 11, 2025 08:00 AM

Workday (WDAY) Valuation: Fresh Healthcare Win and Public Sector Push Spark Investor Interest

Workday (WDAY) has just announced two moves catching investors' attention this week: a new regional hub for government clients in Reston,...

Read Article

November 10, 2025 08:00 AM

Workday (NASDAQ: WDAY) to open Reston, VA office in spring 2026 as public sector hub

Workday will open a Reston Town Center hub for public sector operations, creating 200+ jobs in D.C., Maryland, and Virginia.

Read Article

November 03, 2025 08:00 AM

ISG Provider Lens™: Workday Ecosystem Services 2025 in APAC, Europe, and the US

Deloitte is named a Leader in the ISG Provider Lens™: Workday Ecosystem Services 2025 in APAC, Europe, and the US —across all four...

Read Article

October 14, 2025 07:00 AM

In EU first, Greece set to introduce 13-hour workday

The center-right government is aiming to transform Greece's labor market into one of Europe's most “flexible.”

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-53430

SUMMARY

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Message modules) allows a denial of service via a gzip decompression bomb. This vulnerability is associated with program files lib/grpc/compressor/gzip.ex, lib/grpc/message.ex and program routines 'Elixir.GRPC.Compressor.Gzip':decompress/1, 'Elixir.GRPC.Message':from_data/2. 'Elixir.GRPC.Compressor.Gzip':decompress/1 calls :zlib.gunzip/1 directly on attacker-controlled bytes with no decompressed-size limit, ratio check, or incremental decoding. Because this module is the registered gzip GRPC.Compressor implementation, it is invoked automatically whenever an incoming gRPC frame carries the grpc-encoding: gzip header. :zlib.gunzip/1 allocates the entire decompressed result as a single binary, so a small highly compressible payload (for example a few kilobytes of zeros, which gzip compresses at roughly 1000:1) expands to multiple gigabytes inside a single call. The max_receive_message_length limit is enforced only against the already-decompressed message, so it provides no protection. An unauthenticated remote peer can send a single crafted frame to exhaust the BEAM node's heap and trigger an out-of-memory kill. This issue affects grpc: from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48854

SUMMARY

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust the BEAM's memory and crash the server by streaming a large or slow-trickle unary request body. 'Elixir.GRPC.Server.Adapters.Cowboy.Handler':read_full_body/3 (lib/grpc/server/adapters/cowboy/handler.ex) accumulates every received chunk into a single growing binary with no size cap. Additionally, when the client omits the grpc-timeout header, the per-chunk read timeout resolves to :infinity, allowing a slow-trickle client to keep the connection alive indefinitely while memory grows. A single connection is sufficient to exhaust server memory and crash the node. This issue affects grpc from 0.3.1 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 8.7

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48853

SUMMARY

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc allow unauthenticated attackers to crash the BEAM node via atom table exhaustion and, when a decoded term flows into a call site that invokes it, achieve remote code execution on the server. 'Elixir.GRPC.Codec.Erlpack':decode/2 (lib/grpc/codec/erlpack.ex) calls :erlang.binary_to_term/1 on the raw gRPC message body without the :safe option, no size bound, and no type guard. Any unauthenticated peer that sends a request with Content-Type: application/grpc+erlpack can send a crafted payload that mints arbitrary new atoms (which are never garbage-collected, exhausting the bounded atom table and crashing the VM) or that encodes a fun term which, if applied anywhere downstream, executes attacker-controlled code inside the server process. This issue affects grpc from 0.4.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 9.2

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

CVE-2026-48723

SUMMARY

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36.4 are vulnerable to OS command injection via the cypress_config_file configuration parameter. In readCypressConfigUtil.js, the loadJsFile() function constructs a shell command by interpolating the user-controlled cypress_config_filepath value into a template literal, then executes it via child_process.execSync(). Shell metacharacters in the config path (specifically " and ;) allow breaking out of the quoted argument and injecting arbitrary commands. This issue has been fixed in version 1.36.6.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: 7.8)

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-48599

SUMMARY

Authorization Bypass Through User-Controlled Key vulnerability in elixir-grpc grpc allows authenticated attackers to access or modify resources belonging to other users by smuggling a conflicting value for any path-bound field via the query string or request body. In 'Elixir.GRPC.Server.Transcode':map_request/5 (lib/grpc/server/transcode.ex), all three clauses use Map.merge/2 with path bindings as the first argument, giving them the lowest merge precedence. A request such as GET /users/me/profile?user_id=victim (or a POST with {"user_id": "victim"} when body: "*") yields a decoded protobuf struct where the path-bound field carries the attacker-supplied value rather than the router-extracted value. Any handler that uses the path-bound field for authorization, multi-tenancy scoping, or ownership checks is silently bypassed. This issue affects grpc from 0.8.0 before 1.0.0.

Published

Date2026-06-15

Updated

Date2026-06-15

RISK INFORMATION (Score: )

cvss4

Base Score: 7.6

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

Exploitability

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…