The client is a leading Singaporean telecommunications company. As a part of their digital transformation journey, the legacy systems and applications were migrated to cloud. They wanted to build a framework for measuring, mitigating and quantifying their overall cybersecurity risk posture .

Infosys collaborated with SAFE Security for implementing the Cyber Risk Quantification (CRQ) product in client’s environment.

Key Challenges

  • Time and labor intensive due to manual risk assessment of assets and region-specific security controls by the security team
  • Unable to identify risks in the IT infrastructure leading to increased security incidents and potential financial losses
  • Unable to quantify risk from insider threats to assets having PII data
Line

The Solution

Implemented dynamic risk assessment services

  • Collaborated with SAFE to implement Dynamic Enterprise Cybersecurity and Risk Management through the CRQ product
  • Performed real-time risk assessment across various asset categories such as endpoints, infrastructures and applications
  • Implemented customized compliance controls based on region-specific requirements
  • Performed policy assessment across various cybersecurity products
  • Integrated with client’s Azure portal to onboard and assess the risks to their cloud-based assets
Line

Benefits

Better visibility and remediation of underlying risks

Enhanced the visibility of overall cybersecurity posture by considering the people, process and technology aspects and implementing automated risk quantification

Enhanced the visibility of overall cybersecurity posture by considering the people, process and technology aspects and implementing automated risk quantification

Improved operational efficiency of security operations by providing remediations for failed controls

Improved operational efficiency of security operations by providing remediations for failed controls

Better and informed decision making

Better and informed decision making

Achieved proactive industry and region-specific statutory compliance

Achieved proactive industry and region-specific statutory compliance