Infosys TechCompass #72: Cybersecurity - Cloud Security

Companies speed up digital efforts and see a substantial cloud shift. From lift & shift — where a few noncritical applications migrate to cloud through infrastructure as a service — to multicloud with cloud-native applications in cloud-exclusive enterprises.?

Cloud-native applications accelerate migration, enhance standardization, and lead to error-free development. Yet, they widen the attack surface, which requires fresh strategies against cyber threats. For cyber resilience, vital cloud tenets — posture, identity, data, compliance, and code — demand next-gen security. Cloud-native security should provide a unified view of cyber risks across these tenets with shared contextual information citing a comprehensive perspective.?

Cloud-native application protection platform elevates multicloud security for businesses? ?

Enterprises embrace cloud-native approaches in multicloud platforms such as Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). They use microservices architecture with evolved workloads like containers and serverless to develop scalable cloud-ready applications. In multicloud with a native approach, new security aspects and attack vectors emerge. Cloud-native application protection covers posture, compliance, workload protection, identity response, micro-segmentation, software bill of materials, etc., in a modular but integrated manner. CNAPP offers a unified view of cyber risks across clouds. It proactively identifies security risks from day zero to ensure secure by design in application development and infrastructure provisioning.?

A leading US technology company in conversational commerce and AI software partnered with Infosys to create CNAPP modules on GCP. Infosys ensured cloud security, regulatory compliance, and managed vulnerabilities for GCP’s various workloads, from serverless to containers and Kubernetes.?

Firms secure hyperautomation to future proof their businesses

Hyperautomation reshapes digital transformation through rapid, scalable, and extensive automation. It brings efficiency and cost benefits but opens an all-new attack surface. Securing hyperautomation employs DevSecOps to identify security loopholes and vulnerabilities at each stage of “dev,” “build,” and “run” in the automated application development or infrastructure provisioning life cycle. Unlike reactive cloud security, it safeguards the entire automation landscape. It ensures secure CI/CD pipelines using IAST/SAST/DAST/SCA controls for continuous compliance and vulnerability-free code delivery.

A German multinational investment bank and financial services company partnered with Infosys to build a GCP-based cloud data leakage prevention (DLP) platform. Infosys used JAVA microservices, Terraform scripts, and hyperautomation. It followed DevSecOps to identify security risks with gating controls in the CI/CD pipeline stages.?

Know more about these trends:

Read our Cybersecurity TechCompass to know more.