Minute Read: 4 minutes

How SECUDE HALOCORE helps Infosys extend data protection outside the organization – A Case Study

While Infosys already had good security controls in place, being a forward-thinking organization and known for its out-of-the-box thinking, Infosys wanted to ensure that data especially sensitive information is available only to its employees and is safe-guarded from any third-party views or downloads.

Infosys is a global leader in next-generation digital services and consulting. It enables clients in 46 countries to navigate their digital transformation. With $13 Billion USD as its last 12 month’s revenue, serving a client base of 1500 customers, human capital of 249K employees, and managing millions of square feet of real estate.

SAP is the core enterprise platform for Infosys that forms the backbone for all its key business areas including Finance, HCM, P2P, Planning & Budgeting, and Data Warehousing. It has nearly two decades of history of having well organized and coordinated set of business processes for all its stakeholders across Finance, HR subsidiaries, and delivery units.

The SAP Digital Journey

The SAP digital transformation journey of Infosys was a planned one with milestones every 2-3 years. Infosys ERP system pre-S/4 HANA interfaced with multiple non-SAP and custom-developed .Net applications. A host of technologies was used for establishing connections within these applications.

Over the years Infosys had added terabytes of data and the challenge was to address its exponential growth and landscape complexity. Along with the requirement to add and sustain large volumes of data, came the requirement for better data protection and data security.

Infosys had always ensured that better systems are in place and its data is well protected. They also adopted the concept of a parallel project landscape to ensure BAU is not impacted.

The HANA platform was designed to ensure ZERO RPO with synchronous replication between primary and similar appliances near the DR site.

Infosys HANA deployment is the world’s largest single instance of SAP Business Suite powered by SAP HANA on Hitachi Unified Compute Platform (6TB RAM).

Why Data Protection became a priority for Infosys?

“We manage huge amounts of data day-in and day-out for all our business processes. Cyber threats and data breaches are not confined to the security department alone but they are a growing problem and a great cause of concern because a single data breach can jeopardize the entire organization. We were looking for a smarter data security solution that is powerful, simple to deploy, with no new infrastructure, and one that integrates with existing security technologies and is flexible.”Mr. Srinivas Poosarla, VP and Head, Privacy and Data Protection, Infosys.

Infosys has a stated aim of making the business future-proof. While they already had good security controls in place, yet they wanted to ensure that data when it is shared internally or externally is safe. This is because of their strong corporate governance philosophy.

Integrity and transparency are key to its governance practices to ensure that they gain and retain the trust of its stakeholders at all times. Therefore, they wanted to ensure that the information especially sensitive data is available only to its employees and is safeguarded from any third-party views or downloads.


  • With the threat landscape becoming more sophisticated and changing by the minute, it is always best to take a multi-layered security approach. The standalone security solutions are not sufficient in the long run.
  • Also, Infosys had already deployed RMS (Right Management System) and had migrated further to AIP (Azure Information Protection) at an enterprise level. But this data encryption solution was available for users only but it was not available at the SAP user level and not in an automated rule-based manner. Hence, they needed a solution that would provide automated data protection at the SAP user level.
  • HALOCORE in combination with Microsoft AIP is the only truly comprehensive solution that secures priceless SAP data exiting at endpoints. It extends SAP access control shield for intellectual property and other sensitive information beyond SAP boundaries and it silently and automatically classifies and protects SAP data without any user intervention, drives quick and seamless integration.

Data protected with HALOCORE

How HALOCORE met Infosys need

HALOCORE is an SAP data security software that protects intellectual property and other sensitive information extracted from SAP systems. By integrating directly with SAP, HALOCORE protects data with automated classification, blocks unauthorized reports, and helps generate fine-grained access policies.

HALOCORE met all the needs of Infosys:

  • It protected their sensitive HR and other data coming out of SAP system
  • It leveraged their existing AIP/MIP labels automatically to encrypt and protect the data
  • It enabled them to write granular business rules and have the system identify, fetch, and apply the appropriate AIP template for the data that is being downloaded from SAP
  • It not only helped to define business rules but also have valid exceptions built into the rule engine based on the business requirements and treat the exceptions appropriately
  • All this was done in an automated manner without affecting the end-user experience in any manner. The data was encrypted but it was also seamlessly available to all authorized users
  • A layer of Governance and Protection on the data was available
  • The data protection is intact even if the files are shared with an identified external authorized vendor
  • It also served to create awareness and help in user education concerning handling sensitive data as users see the downloaded files with the appropriate label.

Source: This blog is abstract of the whitepaper published in the Infosys site. For the original content, click HALOCORE helps Infosys Extend Data Protection Outside the Organization

To learn more how HALOCORE can help protect your sensitive SAP data or to request a DEMO write to  

Comments are closed.