Whether you're a job seeker or an employer, we're here to help safeguard your personal information during your Indeed journey.
Learn about the practices and features that make your experience as secure as possible.
Job seekers can make a resume private so it’s only viewable by the employers they contact.
Suspicious login notifications
Users may be prompted to enter a verification code when a suspicious login is detected.
Regular System Assessments
We perform regular vulnerability assessments of our systems and network.
Indeed seeks to use reasonable security measures to help protect against the loss, misuse and alteration of personal information under its control, however, no method of transmission over the Internet, or method of electronic storage, is 100% secure. In addition, please note that emails, messages sent via your web browser, and other similar means of communication with other users, are not encrypted. Therefore, while we strive to protect your information, we cannot guarantee its security.
We encourage all of our users to be cautious and proactive to protect against security threats and scams. Find out what are some simple things you can do to take control of your personal information below.
Create a tougher password
Use a strong, unique password for your Indeed.com account.
Reset your password
if you think someone may have unauthorized access to your account, change your password.
Scan for problems and update software frequently
Run antivirus software and keep your device’s operating system and all software up to date.
Second Factor Authentication, also referred to as 2FA, allows you to set up an additional level (or factor) of security on your accounts, in addition to your password. This is usually something that you can prove that you own and control, such as your phone, or your email account. Adding one more step of authenticating your identity makes it harder for an attacker to access your data. This drastically reduces the chances of fraud, data loss, or identity theft.
Here is what you can do.
- For Employers: Activate “2 Step Verification” on your Indeed Employer account.
- For Job Seekers and Employers: Setup 2FA on your sensitive non-Indeed accounts (such as bank accounts or email accounts), if this option is available.
If you have security concerns, please visit support.indeed.com.
Phishing is a type of scam used to trick end-users into divulging sensitive information. Scammers will often pose as a legitimate company in order to steal financial information or account credentials.
COMMON SIGNS OF PHISHING
From an unknown sender
Indeed-related emails will only come from @indeed.com or @indeedemail.com—be wary of emails from a company or candidate that you haven’t contacted.
Threatening or urgent
A claim your account will be locked if you don’t respond.
Too good to be true
Request you to claim lottery winnings or a large inheritance.
Includes an unexpected attachment
Invoices, obscure file types, or documents prompting you to “enable macros”.
Links to a suspicious website
The website doesn’t look quite right or uses a “look-a-like domain” such as Lndeed.com or ind33d.com.
WHAT YOU CAN DO
Contact the company
If you suspect that someone is fraudulently claiming to be a legitimate company, use a trusted communication such as a phone number listed on their website to reach out to the company directly.
Be wary of attachments
Avoid opening unexpected attachments, especially those with unusual file extensions (.zip, .jar, .js).
Use security tools
Enable and regularly update anti-virus software, firewalls, and security patches.
Keep personal information personal
Don’t send sensitive information such as bank account or credit card data over email or instant messenger.
Job seekers can be targeted by scammers posing as a potential employer, often requesting personal information via email. Learn about the practices and features that make our site as secure as possible.
Scammers may request money for a work-from-home “starter kit” or send you a check with a request that you wire a portion of the money back.
Fraudulent employers may request past W2s or other tax information. Never provide personal or financial information via email.
WHAT YOU CAN DO
Be wary of employers who offer you a job without an interview or formal application process.
Don’t send money
Never pay upfront for a job or “starter kit.”
Don’t transfer “extra” or accidental pay back to employer. Contact your bank for assistance.
Keep personal information private
Never provide personal or financial information via email.
There are a couple ways to report discovered vulnerabilities.
Bug Bounty Program
Since 2014, Indeed has run a Bug Bounty program that proactively encourages and rewards third parties for identifying security vulnerabilities. We invite all security researchers to join and participate in our successful program.
Vulnerability Disclosure Program
Security researchers, industry partners, vendors, customers and consultants who have identified security vulnerabilities and would like to make a ‘good neighbor’ vulnerability disclosure are encouraged to do so through our Vulnerability Disclosure Program.
Please note that the above information is not exhaustive, and is intended only to be used for general guidance. We cannot guarantee your account safety by following these steps alone.