Workplace security and user privacy

Trend 5: Widespread adoption of integrated data security solutions

Enterprises increasingly modernize with the adoption of the digital workplace, specifically during and beyond the pandemic. Microsoft and Google have sharpened their focus on enabling digital workplace with foundational construct of security integrated into the digital workplace ecosystem. Data security concerns are important to ensure data privacy in borderless workplaces. Data classification is an elementary building block of data security. Data protection services are designed to protect data elements and can be enabled across various channels, including email, cloud apps, endpoint devices, instant messaging (IM), online storage spaces, printers, etc.

In this context, data assumes significant importance as an enterprise asset. This includes data classification, data labeling, data leakage prevention from devices, networks, email to cloud apps, and data protection with encryption policies based on classified data and labels. Enterprises need to have integrated data security solutions that can offer capabilities to provide secure data life cycle management across data classification, data creation, and secure data disposal. Microsoft 365 data security stack, comprising Microsoft Information Protection (MIP), O365 Data Leakage Prevention (DLP), Microsoft Defender for cloud applications, Bitlocker, etc., provides integrated data security protection across Office365, Windows10/ Windows 11, MS Teams, SharePoint Online, Exchange Online, etc. Enterprises adopt such integrated data security solutions with standardized data protection policies and implement contextual data protection frameworks across various channels, delivering holistic data security solutions.

A leading German specialty chemicals company partnered with Infosys to design, build, and operate an integrated data security solution for its digital workplace based on Microsoft 365. It wanted to establish a unified data classification, data labeling, encryption and data protection mechanism across end user devices, Office 365, IM applications, cloud applications, etc. Infosys architected data security services across the enterprise, covering over 20,000 endpoints, including servers, to establish zero trust aligned framework, wherein critical or confidential data remains under the control of the enterprise across the data life cycle management.

Workplace security and user privacy

Trend 6: Organizations combine zero trust and SASE to establish perimeter less workplace

Enterprises increasingly take initiatives to replace VPNs with ZTNA to enable flexible workforce access, reduce risks, and achieve zero trust alignment. However, user mobility and cloud adoption have added significant complexity, putting enterprises and their stakeholders at risk. Enterprises have isolated processes for networking-related and security-related functions, creating inefficiencies and preventing an end-to-end view. As the attack area surface continues to increase, enterprises even more adopt zero trust architecture with the rollout of the SASE framework.

The SASE framework transforms security controls toward the edge by replacing legacy multiprotocol, label-switching, and wide area networks. This journey includes shifting to an “as a service” model with the SASE framework to yield better return on investments (RoI), robust security, and reduced complexity. Many enterprises now adopt the SASE framework, choosing security as a service, while adopting the latest security controls such as zero trust access networks and CASB solutions.

A leading Australian mining company partnered with Infosys to deliver an SASE solution for its digital workplace through Palo Alto Prisma Access. This solution enabled the enterprise to deliver Zero Trust aligned security architecture, covering, 15,000 global users, across client headquarters, branch offices, and mobile locations, to securely access cloud and data center hosted applications across five data centers and 130 remote networks (branch offices), and the internet. The company has replaced legacy VPN and established secure workplace connectivity with low latency and resiliency.