Fraud Detection Agent Overview

Overview

Gem’s Fraud Detection Agent helps you identify potentially fraudulent job applications so you can review them before taking action. When the Fraud Detection Agent is turned on for a job, Gem analyzes incoming applications and highlights applications with fraud risk signals for review.

Fraud Detection Agent works by scanning applications via Tofu, an AI-powered fraud detection platform, when they’re submitted. This platform reviews multiple signals and assigns a risk level to each application with 90% accuracy, which recruiters can review individually and at the aggregate level.

Note: Gem’s Fraud Detection Agent is available for select beta customers only.

Requirements

• Fraud Detection Agent must be enabled for your team. To upgrade your account to include Gem’s Fraud Detection Agent, contact your Customer Success Manager or support@gem.com.
• Your team has purchased Fraud Detection checks.
• Your team must use one of the following as your ATS: Gem ATS, Greenhouse, Workday, or iCIMS.
• Your team must use Gem Application Review.
• Applications must include a first and last name, phone number, email address, and an attached resume for Fraud Detection Agent to assess risk signals.

How it works

Fraud Detection identifiers (“risk signals”)

When the Fraud Detection Agent runs on an application, it investigates the following identifiers for “risk signals”. These determine if the application is flagged as a high fraud risk, a medium fraud risk, or no fraud detected.

• Resume metadata: Document properties, editing patterns, and file characteristics.
• Email address: Domain reputation and email address validity.
• Phone number: Number authenticity, carrier information, and geographic consistency.
• LinkedIn profile verification: Profile age, connection patterns, and activity history.
• Person verification: Identity validation across multiple data sources.
• IP address (Gem ATS only): Location consistency and access patterns.
• Device ID (Gem ATS only): Device fingerprinting and access patterns.

Fraud risk levels

After Gem’s Fraud Detection Agent reviews an application, Gem assigns a color-coded risk level:

• Red (high fraud risk): Multiple risk signals are present. Review this application before taking action.
• Yellow (medium fraud risk): Some risk signals are present, but not enough to confidently flag this as suspicious. Review the risk signals before moving forward.
• Green (low fraud risk): No risk signals were detected based on the information available in the application.

Duplicate candidates (real vs. fraud)

The Fraud Detection Agent runs on applications, not candidates. If a candidate applies to a job after a fraud application using that candidate’s information was previously flagged, the new application from that candidate won’t be flagged as fraud. If the same person applies to multiple jobs, each application is assessed separately.

This is because the fraud risk is based on the full set of identifiers included in the application, including the email address, phone number, IP address, and more. Fraud candidates include fake contact information in the application as part of the fraud attempt.

Run the Fraud Detection Agent on a job

After the Fraud Detection Agent is enabled, you can select which jobs to run Fraud Detection on. The steps to run Fraud Detection on a job differ based on which ATS you’re using.

Any user in your Gem account with access to a job, including recruiters and members of the hiring team, can enable the Fraud Detection Agent on that job.

In Gem ATS

To run the Fraud Detection Agent on a job in Gem ATS:

1. Select the Jobs option in the main sidebar under the ATS header.
2. Search or filter for the job you’d like to review flagged applications on.
3. Select the job title to open the job details page.
4. Select the Job settings tab in the top menu.
5. In the Fraud detection section, select the Auto-detect suspicious applications toggle to turn it ON.

The page updates to confirm that the Fraud Detection Agent has been enabled for this job. After a few minutes, processing completes and applications for this job include the application’s fraud risk.

In another ATS

To run the Fraud Detection Agent on a job in an ATS that’s not Gem ATS:

1. Select the Talent Pipeline option in the main sidebar.
2. Search or filter for the job you’d like to review flagged applications on.
3. Select the Action menu (three dots) to the right of the Start reviews button.
4. Select the Auto-detect suspicious applications toggle to turn it ON.

Review flagged applications for a job

After the Fraud Detection Agent has been enabled to run on a job, Fraud Detection automatically runs on all applications submitted for that job to assess the application for risk signals.

To review flagged applications for a specific job:

1. Select the Jobs option in the main sidebar under the ATS header.
2. Search or filter for the job you’d like to review flagged applications on.
3. Select the job title to open the job details page.
4. Select the Start reviews button. This button is displayed in the top navigation next to the Add application dropdown and in the applications section.

5. Flagged applications are automatically ranked at the top of the application review column.

6. Select any flagged candidate name from the application review column to open up their application details, then select the See more option beneath the fraud risk summary to see the full list of identifiers that determined this application’s risk level.

Filter applications by fraud risk

To filter applications by fraud risk, from the application review page for a job, select the Fraud risk dropdown, then select the level of risk you’d like to see applications for.

The page automatically updates to only display applications that match this risk level. The dropdown also updates to display the count of applications that match that risk level.

To update or reset this filter, reopen the Fraud risk dropdown and select or deselect the checked boxes.

Note: Any applications that haven’t been assessed for fraud risk will be included in the No fraud risk option.

Best practices for assessing fraud risk

Use the best practices below to help you decide whether to reject an application flagged as fraud or continue the hiring process.

Confirm whether a candidate is being impersonated

Impersonators often use a real person’s details, such as a real LinkedIn profile, but include their own contact information, such as a different email address or phone number.

If an application includes a mix of high-risk and low-risk contact information, try contacting the candidate using the low-risk options first. For example, if the application includes a LinkedIn profile that appears legitimate, message the candidate on LinkedIn to confirm whether they applied.

Source the real profile if you find an impersonator

If you catch an impersonator using a qualified person’s LinkedIn profile, consider sourcing that real profile and adding the person to Gem.

If the real person applies to the job later, the previous fraudulent application does not affect the new application’s fraud risk assessment.

Additional resources

To learn more about ways to assess application credibility in Gem, check out the following resources.

Relevant articles

• Enable CAPTCHA for Gem ATS job applications and forms
• Gem integrations: Certn
• Gem integrations: Checkr
• Gem integrations: Sterling

Have any issues or questions on this topic? Please feel free to contact your dedicated Gem Customer Success Manager directly or our Support team at support@gem.com.

• Overview
• Requirements
• How it works
• Fraud Detection identifiers (“risk signals”)
• Fraud risk levels
• Duplicate candidates (real vs. fraud)
• Run the Fraud Detection Agent on a job
• In Gem ATS
• In another ATS
• Review flagged applications for a job
• Filter applications by fraud risk
• Best practices for assessing fraud risk
• Confirm whether a candidate is being impersonated
• Source the real profile if you find an impersonator
• Additional resources
• Relevant articles