3 MINS READ
- Overview
TCS is here to make a difference through technology.
Leading the way in innovation for over 50 years, we build greater futures for businesses across multiple industries and 131 countries.
-
Industries
-
Services
-
Products and Platforms
-
Research & Innovation
- Overview
We’re in it for good, driving positive change for the benefit of all.
Our expert, committed team put our shared beliefs into action – every day. Together, we combine innovation and collective knowledge to create the extraordinary.
-
About Us
-
Leadership
-
In the news
-
Events
- Overview
Extraordinary expertise leads to remarkable results.
We share news, insights, analysis and research – tailored to your unique interests – to help you deepen your knowledge and impact.
-
Customer Stories
-
Perspectives
-
Global studies
-
Topics
- Overview
Want to be a global change-maker? Join our team.
At TCS, we believe exceptional work begins with hiring, celebrating and nurturing the best people — from all walks of life.
-
India
-
Americas
-
Asia Pacific
-
Europe and UK
-
Middle East and Africa
- Overview
TCS works hand in hand with world-leading investors.
Tata Consultancy Services LimitedNSE:TCSINR -
Management Commentary
-
Financials
-
News and Events
-
ESG
-
Resources
Top Results
Showing
10
01 - 07
Services
-
Cloud
Tag
Enabling Enterprise Agility & Resilience with a Robust Cloud Strategy
As global enterprises adopt cloud transformation, read how TCS helps businesses build a unique strategy for their cloud journey to enable agility & resilience.
Related InsightsRead how TCS and Microsoft provide energy management solutions and help enterprises achieve net zero emissions and create a sustainable future for all.Solution15 Jul 2022Enable enterprise agility and boost adoption of a unified, open, and scalable data management platform on the cloud with end-to-end, automated migration on AWS.Solution20 Nov 2023Crediting its intelligent-first approach & capabilities in hybrid IT consulting, ISG has named TCS a leader in private/hybrid cloud services. Learn more.Analyst Reports03 Nov 2022 -
AWS Cloud
Tag
Grow, Innovate, and Transform with TCS and AWS Cloud
We bring you the best of TCS and AWS to help you accelerate digital transformation and realize a clear path to value with continuous innovation on AWS Cloud.
Related InsightsConnect with industry leaders to accelerate your cloud transformation journey and learn about the latest cloud innovations at AWS re:Invent 2023 in Las Vegas.Events28 Sep 2023Learn how enterprises can leverage cloud to measure and improve social and governance metrics and overcome environmental, social and governance (ESG) challenges.Blog15 Sep 2023Learn how enterprises can leverage cloud to measure and improve social and governance metrics and overcome environmental, social and governance (ESG) challenges.Blog15 Sep 2023
Open banking, which is seeing increasing adoption, involves banks sharing APIs of their core services with fintechs, retailers, insurtechs and corporates, who in turn build products on top of these services to enhance customer experience. The API ecosystem thus created enables banks to create diverse revenue streams as it allows customers authentication, consent for data sharing, and many other processes.
Sharing user banking data across the fintech ecosystem through APIs, however, requires greater attention to security. The attack surface of APIs must be minimized, and this is only possible if security concerns are factored in at the design stage. Banks need to adopt a security by design approach to realize the benefits of the fintech ecosystem through APIs.
Though regulatory bodies have introduced specific authorization and authentication mechanisms, they are not sufficient to guarantee data privacy and guard against cyber security threats. Majority of API attacks happen because of flaws in business logic and access control violations rather than widely known vulnerabilities such as SQL injection, cross-site scripting and distributed denial-of-service (DDoS) attacks.
Cloud platforms should have built-in capabilities for continuous assessment of APIs and role mappings as part of application development and ensure regressions are not introduced as applications become complex.
DevSecOps capabilities discover, track and fix role-based-access-control (RBAC) vulnerabilities earlier in the development cycle to prevent privilege escalation attacks and unauthorized access to API resources. Continuous API scanning mechanism helps businesses expedite the release cycle of secured APIs.
As different development teams with disparate tool sets work on multiple APIs, enterprises must follow best practices such as validating schema, tracking configuration changes, enabling security automation via bot protection and vulnerability checks, securing private end points, encrypting data, activating access control to resources, and monitoring for security violations.
In AWS environments, there are a host of native capabilities - such as AWS Web Application Firewall (WAF) bot control - to gain visibility into transport layer security (TLS), and detect source IP address of a malicious bot. Data encryption of the API request and response messages secure API end points, which can be done using applications such as AWS Certificate Manager.
Machine learning can be used to process data exchanged through APIs. Securing APIs does not refer to only adding security controls, but also extends to anomaly detection abilities. Machine learning algorithms can be used to identify and flag anomalous behavior and malicious data trends. AWS Config is a service that is used to track changes to API configurations.
The entire banking ecosystem runs on trust. Consumers should be convinced that their open banking app is secure. TCS, in partnership with AWS, has enabled financial institutions to embrace open banking by building secure APIs that bridge services and customer experience. TCS AWSBU Security Foundation Designer Solution offers security design patterns leveraging native AWS capabilities to create APIs for development teams so that a centralized point of control to enforce security is in place.
TCS has built open banking platforms for its clients offering highly secured APIs leveraging AWS services. A Norwegian bank decided to offer a simple person-to-person (P2P) payment solution over a mobile platform, which required a complete modernization of its monolithic architecture to microservices. TCS partnered with the bank to transform from a traditional bank to an open API ecosystem by building a cloud foundation with the flexibility and scalability needed to build the APIs. The payment platform took less than one-tenth of the time taken to capture equivalent customer base as their traditional bank and saw 25% of the country’s adoption within six months of launch.
About the author
Raji Krishnamoorthi
Raji Krishnamoorthi
Raji Krishnamoorthy leads the AWS Security and Compliance practice at Tata Consultancy Services. Raji helps enterprises create cloud security transformation roadmap, build solutions to uplift security posture, and design policies and compliance controls to minimize business risks. Raji, along with her team, enables organizations to strengthen security around identity access management, data, applications, infrastructure and network. With more than 18 years of experience in the IT industry, Raji has held a variety of roles at TCS which include CoE lead for Public Cloud platforms and Enterprise Collaboration Platforms.
Related reading
AWS Cloud
Cloud
Microsoft workloads on AWS: Improve Productivity and Drive Innovation
Blog
|
25 Oct 2022
AWS Cloud
Cloud
What’s next for the Cloud Technology? TCS Answers the Big Questions
Blog
|
14 Sep 2022
AWS Cloud
Cloud
Moving reference data to cloud in capital markets to eliminate issues
Blog
|
20 Aug 2022
Cloud
AWS Cloud
Building a Smart Energy and Utility Platform to Reduce Carbon Emission
Blog
|
21 Jun 2022
Contact
Contact
What’s on your mind?
We’re here to help! Tell us what you’re looking for and we’ll get you connected to the right people.
Looking for something else?
