The international space station has a virus.  I don't mean like The Russian Flu, I mean like a computer virus.  NASA has reported that the space station command and control computers are infected with a virus designed to swipe online gaming passwords.

Ummm... yikes.

What does HRIS Software have to do with the international space station?  The same vulnerabilities NASA needed to guard against are some of the same dangers your HRIS System vendor needs to guard against.

NASA says it doesn't know how the virus got there, but I have a guess.  Someone playing an online game while on the clock at NASA had their computer infected and then, by whatever route, that infection made it to the space station undetected.

HRIS Sysetms stored a great deal of sensative data in any number of their modules: applicant tracking, performance management and many of the other modules, if compromised, could reveal personal data.

Almost eveyone inspects the data center where HRIS Software is housed, but very few companies inspect the policies and procedures from the offices where an HRIS Software vendor's employees will access and maintain that software.

This seems like a likely scernaio of what happened with the sapce station.  A threat vector was not sufficiently closed and a (fortunately harmless) virus made it to a place no virus has gone before.