Describing Data and Content Security

Generate Information Reports and Change Reports for both Talent Community Members and Client Administrators/Recruiting Dashboard users from Career Site Builder→Tools→Data Privacy & Security Settings→Data Subject Reports.

• Career Site Builder now gives customers the ability to enable a Content Security Policy, an HTTP header that automatically disallows external domains and only allows the browser to render resources from the customer's domain.
• HTTP headers with a Content Security Policy are used in career site pages owned by the organization (such as jobs.company.com) but not in the Candidate Profile and other pages generated within SAP SuccessFactors Recruiting.
• The purpose of the Content Security Policy is to prevent cross-site scripting (hacking the CSB career site).
• We only recommend enabling the Content Security Policy for customers with specific security needs, such as finance companies.

• Data Subject Reports: Understand how to generate Data Subject Reports for both Talent Community Members and Client Administrators/Recruiting Dashboard users through Career Site Builder's Data Privacy & Security Settings.
• Content Security Policy: Learn about enabling a Content Security Policy in Career Site Builder to enhance content security by restricting external domains and allowing resources only from the customer's domain.
• Notifications: Discover the configuration process for Recruiting email templates in Admin Center, with special instructions for indicating necessary changes in the Configuration Workbook, excluding the job alert email template.