Read time: 6 minutes

Spooky season is upon us! 👻 So today, we're gonna take the spook out of something that gives many of us the heebeegeebees: segmented security.

Did you just groan? 😅

We get it. Workday security is tough enough on its own. But, once you master this part of the Workday trifecta (reporting & calc fields, business processes, and security), you’ll become the WD generalist the ghouls themselves fear 😜

Let’s set the stage with a quick recap of Workday security...

Workday security is governed by three core considerations:

Most days that formula works, but some days, it’s not enough! Because sometimes users only need access to… certain slices of the what. Not all documents. Not all pay results. Not all integrations.

This is where well-meaning admins become accidental chaos goblins 👹

You know the scene…

We’ve all been there—a teammate needs access just this once. The security policy is right there. You think, “What’s the harm?” and click Edit → Activate.

File that under #seemedlikeagoodideaatthetime 😬 These are the HR security horrors that can’t be unseen 😱 

The good news is that Workday's security capabilities are robust! With the right segmented setup, you can lock down your data just right.

You don’t need garlic or holy water to keep the security scaries away—just segmented security.

Segmented security is Workday’s configuration solution to partition—or segment out—certain types of data so you can secure access to those pieces without giving away the whole castle… it’s your way around the “all or nothing” domain access dilemma.

Here’s an analogy…