Showing results for 
Search instead for 
Did you mean: 

email and security

Go to solution
Fred Martin_1
Valued Contributor

email and security

I need some very basic information.

HR is saying that some people don't want to email resumes to us, unless our email is secure.

Seems to me that email is inherently insecure unless the sender client and my server agree to an encryption policy.

Is this an unreasonable method for inbound mail from general public?

Should I just tell HR that we should be using some kind of secure HTTPS web form, or some other method?

I'll research the details elsewhere but if someone can give me the general info I'd appreciate it.

Steven E. Protter
Exalted Contributor

Re: email and security

Shalom Fred,

smtp email is inherently insecure. You are right about that.

However you can use PGP to encrypt the attachment, that is how people keep the data in the email attachment safe.

https web form is how a lot of HR firms and employers do it as well. I've been doing a pile of applications due to recent job changes.

Encrypting the attachment is easier and less expensive for you. The https form might make the HR weenies feel better.

Steven E Protter
Owner of ISN Corporation
Fred Martin_1
Valued Contributor

Re: email and security

PGP would seem to require that the sender would have to install and know how to use PGP.

The other option that comes to mind is an account creation engine on our website for HTTPS, a form to fill out and an upload ability on the site, to deliver any attachments.

Has anyone seen any other methods?