In Workday HCM, approval authority is granted through business process security policies, not by assigning individual users directly to steps within a business process definition. Business process definitions determine what steps exist, while business process security policies determine who can perform actions on those steps.
When an employee is promoted, compensation changes are handled through the Propose Compensation Change business process. Even though the promotion itself occurs within the Change Job business process, the approval of compensation changes is controlled separately. This separation allows organizations to assign different approvers for job changes and compensation decisions, supporting strong governance and segregation of duties.
To grant a user the ability to approve compensation changes related to promotions, the user must be assigned to a security group that has permission to perform the Approve action on the Propose Compensation Change business process security policy. Once the user is a member of that security group and the changes are activated, Workday will route compensation approval tasks to them when applicable.
Options B and D are incorrect because users are never assigned directly to individual steps within a business process definition. Step routing is driven by security groups, not individual users. Option A is incorrect because the Change Job business process controls job-related actions, not compensation approval.
From a Workday Pro HCM best-practice standpoint, always grant approval access by updating the appropriate business process security policy and assigning users to the correct security groups. This ensures scalable, auditable, and role-based access control.
Therefore, the correct and Workday-verified answer is Assign the user to a security group with permissions to the Approve action on the Propose Compensation Change business process security policy.
