Rippling and its affiliates do not provide tax, accounting, or legal advice. This material has been prepared for informational purposes only, and is not intended to provide or be relied on for tax, accounting, or legal advice. You should consult your own tax, accounting, and legal advisors before engaging in any related activities or transactions.
5 Ways HR Leaders Can Better Understand IT (Without the Jargon)
In this article
IT touches almost every part of how a business runs (devices, access, security, onboarding, offboarding), yet for most HR leaders, it still feels like a black box. You know it matters. You're not always sure what's happening inside.
That dynamic creates real problems. Decisions get made without IT in the room. IT gets treated like a vendor instead of a partner. And when something breaks—a critical system goes down on a Saturday, a new hire can't log in on day one, a former employee still has access to company data weeks after their last day—everyone feels it.
The good news: you don't need a technical background to close this gap. Here are five practical ways to build a working understanding of IT and become a better collaborator for your IT counterpart.
1. Understand What IT Actually Owns
Before anything else, you need to know what IT is responsible for. It's a lot more than fixing laptops and resetting passwords. IT typically owns four domains:
Devices. Every computer, phone, and tablet employees use for work. IT manages what's on them, whether they're encrypted, and what happens when one gets lost or an employee leaves. Device management software automates most of this, but only when IT is set up correctly from the start.
Network and infrastructure. How everything connects: your office Wi-Fi, cloud services, servers. Increasingly, this includes AI tools and the security controls around them.
Applications. The software the business runs on: who has access, what accounts get created, and what happens when someone leaves. If your new hire can't get into Salesforce or GitHub on day one, this is where the problem lives. Identity and Access Management (IAM) is the discipline that governs this entire domain.
Security. Not a separate thing: a layer woven through the other three. Every device, network, and application decision has a security dimension. Security isn't IT being difficult. It's IT doing its job.
Understanding these four domains matters because it gives you a map. When something goes wrong or you're planning something new, you'll know which part of IT to involve and why.
One thing that surprises most HR leaders: in many companies, one small team owns all four of these domains. In some companies, it's one person. That's a significant surface area, and understanding it changes how you think about what you're asking when you bring IT into a project at the last minute.
2. Learn the Terms That Actually Show Up in Your Work
You don't need to learn all of IT's vocabulary. You need to learn the parts that show up at the intersection of HR and IT, because those terms come up constantly in onboarding, offboarding, compliance, and tooling conversations. Here's a plain-English glossary of the ones that matter most:
MDM (Mobile Device Management): How IT controls and secures the devices employees use. Think of it as a remote hand that can configure, lock, or wipe a laptop if it goes missing or an employee leaves. Rippling's MDM software handles this across macOS, Windows, iOS, and iPadOS from a single dashboard.
SSO (Single Sign-On): One login that gives employees access to everything they need. Less friction for your team, and actually more secure because there are fewer passwords floating around.
MFA / 2FA (Multi-Factor Authentication): The second step after a password: an app prompt, a passkey, a verification code. It exists because passwords alone aren't enough anymore. When IT requires it, they're not being annoying. They're closing one of the most common attack vectors.
Provisioning: Setting up a new employee with everything they need to do their job: device, accounts, software access. It starts when HR creates a user in the HR system, but it triggers a whole chain of downstream actions across IT systems. The data that feeds that chain lives in your HR platform.
RBAC (Role-Based Access Control): The idea that what you can access at work should match your role. Not everyone needs everything. This is how IT enforces that, and the data that drives it (job title, department, manager) lives in your HR system. When that data is wrong or out of date, the wrong people get the wrong access. Rippling automates role-based permissions so access updates the moment an employee joins, changes roles, or leaves.
A practical tip: when you encounter an acronym you don't recognize in a meeting with IT, just ask what it stands for. Most IT people are genuinely happy to explain when someone wants to understand; the conversation usually doesn't happen because people assume they'll feel lost.
3. Get Inside the IT Risk Mindset
Every IT "no," every policy that feels overly strict, every extra step in a process: it's been filtered through a risk lens. Once you understand that, IT stops feeling like an obstacle.
IT is always thinking about two things: what happens if something goes wrong, and how bad it would be. Every employee with a device and a login is a potential entry point, not because they're careless, but because people are the most targeted part of any security model. Phishing works. Credential theft works. It doesn't require anyone to be doing anything wrong.
A few specific things IT worries about that HR leaders often underestimate:
Offboarding is higher risk than onboarding. When someone is onboarding, they're there. You can see them, they can flag problems, you can fix things in real time. When someone leaves, the window between their last day and when their access is actually removed is one of the biggest risk surfaces in any company. It's not just locking their laptop. It's every app they had access to, every open session, every shared credential. This is where real incidents happen. See how Rippling approaches smooth IT offboarding, and why getting it right requires HR and IT to move in lockstep.
Cyber insurance doesn't save you if you're not following your own rules. A common misconception is that if something goes wrong, insurance will cover it. Many cyber insurance policies will deny a claim if the company wasn't following the security policies it said it had in place. If IT has rules and they're not being enforced, that's not just a security problem; it's a financial one.
HR is part of IT's risk picture. HR is often the first point of contact for new hires, the team walking people through security practices, and the function making decisions that affect access and devices. When HR makes decisions without looping in IT (rolling out a new tool, opening a new office, making a headcount change), it creates downstream risk that IT has to manage without warning. Securing your IT environment starts with both teams operating from the same playbook.
The best frame for understanding IT's mindset: it's not pessimism. It's the job. The more you can meet IT with that understanding, the more collaborative the relationship becomes.
4. Know How IT Measures Success
Every function has metrics. Finance has revenue and margin. HR has retention and time-to-fill. IT has its own measures, and when you understand what IT is optimizing for, you understand what they need from you to do their job well.
Uptime. Is everything working? This is IT's baseline. When systems go down, employees can't work. IT lives and dies by this.
Provisioning time. How long does it take to get a new employee fully set up? A new hire who can't log in on day one is an IT failure, but it's often caused by incomplete or inaccurate data from HR. Rippling's IT onboarding checklist covers exactly what needs to happen, and in what order, to make day one run smoothly. The start date is wrong by a day. Department field blank. Manager not assigned. All of it affects whether provisioning runs correctly.
Ticket response and resolution time. How fast does IT respond to issues? This is a signal of whether the team is overwhelmed. Slow response times don't just mean bad service; they mean employees stop asking and start going around IT. That's when shadow IT grows and security risk accumulates.
Security posture. Are devices up to date? Is access being reviewed? Are there accounts that should have been removed and weren't? This one is harder to quantify but it's what keeps IT leaders up at night. Compliance frameworks like SOC 2 formalize many of these controls and they depend heavily on HR keeping employee data accurate and complete. Rippling can make SOC 2 a byproduct of how you operate rather than a one-time scramble.
There's a parallel here that's worth naming: both IT and HR are functions where doing the job well is invisible. No one comes to work saying "I love how fast I got my laptop set up." But as soon as something breaks—slow onboarding, a security incident, access someone shouldn't have had—both teams hear about it immediately. That shared experience is a foundation for partnership. IT and HR should be tracking onboarding and offboarding metrics together, not separately.
5. Ask Better Questions
Most people either avoid IT conversations entirely or ask questions that are too vague to act on. "Can you make this work?" isn't enough to go on. When you understand IT's domains, vocabulary, risk mindset, and metrics, you have what you need to have real conversations. A few questions that actually land well with IT:
"What do you need from us to make this go smoothly?" IT is usually handed decisions and told to execute. This question signals that you see IT as a partner, not a service desk.
"What could break?" Giving IT permission to think through failure modes before something launches is genuinely useful. They know exactly how things go wrong. Most of the time, nobody asks.
"How much lead time do you need?" IT can move fast when it has to, but last-minute requests mean shortcuts, and shortcuts mean risk. Asking this upfront changes the outcome.
"Can you walk me through how this works?" Most IT people are happy to explain when someone actually wants to understand. That conversation builds mutual respect and means you make better decisions going forward.
"How can we align so we're not creating double work or compliance gaps for each other?" This is the question that gets at the heart of the IT-HR relationship. You share more compliance surface area, more employee data, and more operational risk than either team usually acknowledges. Managing remote employee devices is one area where this alignment is especially critical.
The Bigger Picture
IT and HR are two of the few functions in any company that have deep visibility into what's actually happening with people: who's coming in, who's leaving, what they have access to, how they're being set up to succeed. When those two teams work in silos, the company pays for it in slow onboarding, security incidents, wasted spend, and operational drag.
The path to a better relationship isn't becoming an IT expert. It's understanding what IT owns, learning the terms that matter, respecting the risk mindset, knowing what IT measures, and asking the right questions. As one practitioner put it: HR's job is to build the bridge. IT's job is to protect it. You do that work better together.
Rippling connects HR and IT in a single platform, so the data that drives provisioning, access control, and device management stays in sync automatically. Learn more about how Rippling IT works.
Disclaimer
Author
James Sorrenti
IT Strategy & Community
Hubs
See Rippling in action
Increase savings, automate busy work, and make better decisions by managing HR, IT, and Finance in one place.