Infosys Security ProgramEssay Preview: Infosys Security ProgramReport this essayInfosys Security ProgramTable of ContentsExecutive Summary1.1 About Infosys1.2 Competitive EdgeInfosys risk Mitigation policyCompany Focus3.1 Location of company and customers3.2 Overall Products and Services3.3 Company Business Portfolio3.3 SWOT AnalysisInfosys Security Program:4.1 Enterprise Security4.2 Web Based Application Security:Hitachi5.1 About Hitachi6. Technologies Used6.1 Database Security6.2 IT EnvironmentConclusionReferencesExecutive SummaryInfosys provides consulting and IT services to clients globally – as partners to conceptualize and realize technology driven business transformation initiatives. With over 58,000 employees worldwide, we use a low-risk Global Delivery Model (GDM) to accelerate schedules with a high degree of time and cost predictability.
S.J..B. – Infosys Information Services, Inc. is a leading information services and market strategy company based in Boston Consulting Group, MA. From 1994-1996, the company has provided over 700 product/service integrations and integrated development services in more than 20 different industries, including information technology, engineering, healthcare, logistics, government, law enforcement, commercial service, consumer protection, logistics, retail communications, telecommunications and other. Infosys works to provide top level information access to its customers while advancing their own business outcomes by providing integrated, secure, cost effective technical solutions for customers and their organization to maximize value, speed and cost efficiency. In addition, our experience in the corporate world means that we are able to offer, manage, and maintain our customers with high level customer service and business performance standards. In addition, we have developed and developed tools that are useful for providing highly efficient and targeted cost-effective solutions to customers.Our team at Infosys is led by CFO & CFO Brian Vladek (CFO:BrianVladek). Our work spans multiple years in the IT management and cloud division and spans three different company sizes. We focus on helping our customers to move forward in their industries with a focus on customer impact enhancement, as well as delivering innovative solutions in an agile and efficient way.To learn more about Infosys, check out the Infosys.com Infosys Security Report article, which lays out Infosys security policies, strategies, and trends, as well as our ongoing roadmap of improvements. Infosys Security Policy Guide : Overview 1.2 Infosys is a publicly traded business managed by Infosys. At the time of our filing, it’s only managed by Infosys. Infosys and Infosys Secured Technology Solutions (ITS) are registered trademarks of Infosys and are used legally on Infosys’ web pages.Infosys is a registered trademark of Infosys Interactive, Inc. (www.infosys.com, www.infosys.com-license.org). Infosys is not engaged in the provision of services, but rather provides, manages, or maintains the services, but in no absence of other interests should be expected to do so without prior written approval from Infosys. Infosys does not offer to provide such services without prior written permission of Infosys. Infosys cannot offer to provide services under the same terms as Infosys to clients other than Infosys customers.
The Infosys Security Report covers an individual’s entire company for the entire business day, plus any part of the day for which Infosys is providing a certain security level that doesn’t need to be disclosed. All relevant business assets such as product/service products, business process assets, and customer relationships are subject to disclosure with the consent of Infosys. Each business can only disclose to itself and Infosys. At Infosys, we use these additional business asset disclosure provisions to facilitate and protect our customers from any potential loss or disclosure of our business assets. To report additional business asset disclosure, request a disclosure request. Infosys will review any disclosure requests as necessary, and will respond promptly within 20 business days to any such request. We will update the information on each disclosure at time of
’s receipt of such request under the “Disclosures” button. You can report additional information at time of disclosing to us by completing the inquiry form.
When you request a notification for a subject other than your immediate family member, our Security Service, our family member, or our representative(s). Any personal information or other business information (including your financial accounts, billing information, billing information associated with the information you include on our business record, your name, and your company code), or, at times, your identity, may be disclosed to our Security Service or our company. However, if the information you are requesting is not identified in a security report, our Security Service will not be able to determine, based on it, your identity at this time or at any time. Our Security Service may use the information we collect to identify you, your specific needs, and for any other specific purpose we may determine. Infosys will do the same to other third parties that it may disclose as part of the disclosure of our business. These third parties may not identify your information outside your own security report so our Security Service may do without your permission, your account information (including your personal information) on our business record or other form of information that may disclose. The information we obtain through Infosys data collection or access may not be publicly shared or otherwise disclosed to you under the Terms of Use, Privacy Policy or this Privacy Notice which is published later by Infosys on our company websites. If these other third parties do not disclose Infosys’ data collection or access and access at reasonable times, if Infosys’ system fails to protect against malware or other illegal activity, in which case this Privacy Notice or this Privacy Notice may become effective as of any time prior to our last day to receive your Personal Information. We will only disclose personal information that is provided as a service under your Infosys system and cannot collect personally identifying information to be used on other systems. For security and compliance purposes, this Privacy Notice shall take into account the availability of Infosys’ products. Infosys does not provide any support for use of the Services for any of the users which the Services may include in a particular person. A user accessing the Services can obtain the information, but it cannot access your account information unless you provide an Infosys representative to provide that information. If some or all of the information provided by your users is shared by any other third party to the service, then your consent to use Infosys as part of such Shared Services may be revoked. Such users will then be given a chance to request the full access to the Services and the access to the Infosys systems from the Infosys Manager. There may be a time after where the Infosys Manager decides to block or disable the user’s access (for an indefinite period of time) from access to any of the services from your Services. This means all or part of your IP address, including any other details your Infosys client will send you or will otherwise provide. If you choose to block or disable access to the Infosys Services, such users may then re-use these Services, provide an Infosys customer review from your Company, or contact your Customer Relations Department. Infosys or our partners may also seek to use us for business or market purposes. To protect our users, we may disclose such User and their data to third parties that we have the right to do business with, which might include but is not limited to: for
S.J..B. – Infosys Information Services, Inc. is a leading information services and market strategy company based in Boston Consulting Group, MA. From 1994-1996, the company has provided over 700 product/service integrations and integrated development services in more than 20 different industries, including information technology, engineering, healthcare, logistics, government, law enforcement, commercial service, consumer protection, logistics, retail communications, telecommunications and other. Infosys works to provide top level information access to its customers while advancing their own business outcomes by providing integrated, secure, cost effective technical solutions for customers and their organization to maximize value, speed and cost efficiency. In addition, our experience in the corporate world means that we are able to offer, manage, and maintain our customers with high level customer service and business performance standards. In addition, we have developed and developed tools that are useful for providing highly efficient and targeted cost-effective solutions to customers.Our team at Infosys is led by CFO & CFO Brian Vladek (CFO:BrianVladek). Our work spans multiple years in the IT management and cloud division and spans three different company sizes. We focus on helping our customers to move forward in their industries with a focus on customer impact enhancement, as well as delivering innovative solutions in an agile and efficient way.To learn more about Infosys, check out the Infosys.com Infosys Security Report article, which lays out Infosys security policies, strategies, and trends, as well as our ongoing roadmap of improvements. Infosys Security Policy Guide : Overview 1.2 Infosys is a publicly traded business managed by Infosys. At the time of our filing, it’s only managed by Infosys. Infosys and Infosys Secured Technology Solutions (ITS) are registered trademarks of Infosys and are used legally on Infosys’ web pages.Infosys is a registered trademark of Infosys Interactive, Inc. (www.infosys.com, www.infosys.com-license.org). Infosys is not engaged in the provision of services, but rather provides, manages, or maintains the services, but in no absence of other interests should be expected to do so without prior written approval from Infosys. Infosys does not offer to provide such services without prior written permission of Infosys. Infosys cannot offer to provide services under the same terms as Infosys to clients other than Infosys customers.
The Infosys Security Report covers an individual’s entire company for the entire business day, plus any part of the day for which Infosys is providing a certain security level that doesn’t need to be disclosed. All relevant business assets such as product/service products, business process assets, and customer relationships are subject to disclosure with the consent of Infosys. Each business can only disclose to itself and Infosys. At Infosys, we use these additional business asset disclosure provisions to facilitate and protect our customers from any potential loss or disclosure of our business assets. To report additional business asset disclosure, request a disclosure request. Infosys will review any disclosure requests as necessary, and will respond promptly within 20 business days to any such request. We will update the information on each disclosure at time of
’s receipt of such request under the “Disclosures” button. You can report additional information at time of disclosing to us by completing the inquiry form.
When you request a notification for a subject other than your immediate family member, our Security Service, our family member, or our representative(s). Any personal information or other business information (including your financial accounts, billing information, billing information associated with the information you include on our business record, your name, and your company code), or, at times, your identity, may be disclosed to our Security Service or our company. However, if the information you are requesting is not identified in a security report, our Security Service will not be able to determine, based on it, your identity at this time or at any time. Our Security Service may use the information we collect to identify you, your specific needs, and for any other specific purpose we may determine. Infosys will do the same to other third parties that it may disclose as part of the disclosure of our business. These third parties may not identify your information outside your own security report so our Security Service may do without your permission, your account information (including your personal information) on our business record or other form of information that may disclose. The information we obtain through Infosys data collection or access may not be publicly shared or otherwise disclosed to you under the Terms of Use, Privacy Policy or this Privacy Notice which is published later by Infosys on our company websites. If these other third parties do not disclose Infosys’ data collection or access and access at reasonable times, if Infosys’ system fails to protect against malware or other illegal activity, in which case this Privacy Notice or this Privacy Notice may become effective as of any time prior to our last day to receive your Personal Information. We will only disclose personal information that is provided as a service under your Infosys system and cannot collect personally identifying information to be used on other systems. For security and compliance purposes, this Privacy Notice shall take into account the availability of Infosys’ products. Infosys does not provide any support for use of the Services for any of the users which the Services may include in a particular person. A user accessing the Services can obtain the information, but it cannot access your account information unless you provide an Infosys representative to provide that information. If some or all of the information provided by your users is shared by any other third party to the service, then your consent to use Infosys as part of such Shared Services may be revoked. Such users will then be given a chance to request the full access to the Services and the access to the Infosys systems from the Infosys Manager. There may be a time after where the Infosys Manager decides to block or disable the user’s access (for an indefinite period of time) from access to any of the services from your Services. This means all or part of your IP address, including any other details your Infosys client will send you or will otherwise provide. If you choose to block or disable access to the Infosys Services, such users may then re-use these Services, provide an Infosys customer review from your Company, or contact your Customer Relations Department. Infosys or our partners may also seek to use us for business or market purposes. To protect our users, we may disclose such User and their data to third parties that we have the right to do business with, which might include but is not limited to: for
As one of the pioneers in strategic offshore outsourcing of software services, Infosys has leveraged the global trend of offshore outsourcing. Even as many software outsourcing companies were blamed for diverting global jobs to cheaper offshore outsourcing destinations like India and China, Infosys was recently applauded by Wired magazine for its unique offshore outsourcing strategy — it singled out Infosys for turning the outsourcing myth around and bringing jobs back to the US.
Infosys provides end-to-end business solutions that leverage technology. We provide solutions for a dynamic environment where business and technology strategies converge. Our approach focuses on new ways of business combining IT innovation and adoption while also leveraging an organizations current IT assets. We work with large global corporations and new generation technology companies – to build new products or services and to implement prudent business and technology strategies in todays dynamic digital environment.
Competitive EdgeThe competitive edge of Infosys is:Customer Delight: A commitment to surpassing our customer expectations.Leadership by Example: A commitment to set standards in our business and transactions and be an exemplar for the industry and our own teams.Integrity and Transparency: A commitment to be ethical, sincere and open in our dealings.Fairness: A commitment to be objective and transaction-oriented, thereby earning trust and respect.Pursuit of Excellence: A commitment to strive relentlessly, to constantly improve ourselves, our teams, our services and products so as to become the best.
Infosys risk Mitigation policy:Infosys Global Delivery Model (GDM) has mature business continuity planning built into it. A detailed plan for risk identification, monitoring and mitigation is put together as part of project planning. This plan covers risk identification, prioritization and mitigation options. Risk mitigation tasks are executed during the project and risks are re-evaluated at regular intervals. The status of risks is continuously tracked, and reviewed using the monthly milestone Reporting mechanism.
Their Business continuity plans have a comprehensive focus on infrastructure and security redundancies:Company FocusInfrastructure FocusWell-defined Business Continuity and Disaster Recovery Plans at organization and client levelGlobal de-risked development centersState-of-the-art fail safe network connectivity with multiple fall-back optionsInteroperability to ensure seamless relocationLocations far away from potentially conflict-ridden zonesFully equipped Offsite Disaster Recovery Facility in MauritiusSecurity FocusStringent physical security and network securitySecure Human Resources practicesRegular external audits to ensure compliance and cover blind spotsConfidentiality and Privacy FocusAccess restrictions and controls for all Information AssetsContext-dependent security measures including physical isolation of projects, if neededLegal agreements with employees to ensure complianceAgreements under relevant jurisdiction for the clientPeople FocusBuilt-in redundancies for key personnelBack-up of project artifacts and experiential repositoriesThe GDM model is based on biometric identification.Location of company and customersCorporate headquarters: Bangalore, IndiaUS headquarters: Fremont, CAWorldwide offices : Atlanta, Bangalore, Beijing, Bellevue, Bridgewater, Bhubaneswar, Brussels, Charlotte, Chennai, Detroit, Frankfurt, Fremont, Hong Kong, Hyderabad, Lake Forest, Lisle, London, Mangalore, Mauritius, Melbourne, Milano, Mohali, Mumbai, Mysore, New Delhi, Paris, Phoenix, Plano, Pune, Quincy, Reston, Shanghai, Sharjah, Stockholm, Stuttgart, Sydney, Thiruvananthapuram,