A BFSI firm adopts best security practices
TCS identifies configuration deviations using serverless functions
Services
Cloud
Enabling Enterprise Agility & Resilience with a Robust Cloud Strategy
Highlights
- The client, a financial services firm, wanted to leverage AWS to meet governance and compliance requirements.
- It wanted to adopt a secured digital fabric to comply with the Center for Internet Security’s corrective configuration measures through serverless functions.
- TCS adopted a compliance-as-a-code approach to identify changing configurations and build best security practices.
In this article
Challenge
A leading BFSI firm wanted to build robust security controls with AWS Services.
The financial services firm wanted to leverage AWS to meet governance and compliance requirements, and gain real-time visibility into their recently adopted cloud infrastructure. The company’s IT team had spent significant time and effort in trying to ensure compliance, but the effort was largely fragmented. There was a need to adopt a secured digital fabric to comply with the Center for Internet Security’s corrective configuration measures through serverless functions.
Solution
TCS identified changing configurations and compliance drifts.
TCS adopted a compliance-as-a-code approach to identify changing configurations and build best security practices. TCS implemented a solution based on AWS Cloud Adoption Security Perspective to protect customer workloads and mitigate vulnerabilities and detective controls to help provide visibility into the AWS operations. The solution helped monitor user activity in cloud with the help of AWS CloudTrails and leveraged Amazon CloudWatch to deliver a near real-time stream of events. While users provision resources on AWS, the solution ensured monitoring and auto-remediation of compliance deviations. TCS also implemented the Amazon Simple Notification Service (SNS) to prohibit any misconfigurations and flag notifications related to retiring a signing key and substituting with a new cryptographic key, inactive user accounts and vulnerable group accounts, among other system misconfigurations.
TCS protects BFSI-related workloads and mitigates vulnerabiities.
Benefits
The finance company now monitors configuration drifts with real-time Amazon SNS alerts.
TCS helped build a robust, breach-proof security posture by providing real-time notifications for configuration drifts and eliminating additional time spent on security operations. The solution has accelerated development efforts and ensured compliance, thereby eliminating compliance fines and ensuring business continuity for the finance company.
What made this happen
Develop strategies for holistic cloud transformation, with end-to-end services for cloud operating models, security, operations set-up, digital process enablement, and cloud value realization.
Simplify hybrid cloud orchestration with a Machine First™ approach, powered by TCS’ Cloud Exponence platform. Make the most of SAP application management services and SAP BASIS support with our industry-leading delivery and operations management capabilities.
Deliver a unified omnichannel user (agent) experience with our AI-based self-service capabilities. Reimagine your customer experience with a CX collaboration space powered by TCS RemacX platform.
Build a resilient and future-ready architecture, leveraging cloud-native infrastructure, automation, and reusable and ready-to-deploy components, including AWS containers, AWS serverless microservices (chassis) platform, and DevSecOps factory.
Enable collaborative ecosystems and cloud computing at the edge to create hyper-personalized customer experiences with intelligent products, connected plants, connected services, and product life cycle management.
Rapidly define, design, and deploy AWS foundational platforms and services for cost management, continuous improvement, and security using services powered by TCS Cloud Mason Framework and reusable infrastructure as code (IaC) templates.
Accelerate business transformation with next-gen products and platforms contextualized for industries.
Reimagine enterprise applications, data, or infrastructure with automated cloud migration services, leveraging data center discovery and migration factory powered by TCS Cloud Counsel platform, TCS CrystallusTM for S/4HANA, and TCS ConvertCore.
Transition seamlessly from legacy applications and systems to microservices-based cloud architectures by leveraging automation and AI.
