WorldLink

Data Encryption Requirement Identification

Objective

Ensure sensitive information including PII data-at-rest and during transmission is encrypted as per IS standards and policies

Industry: Global Consumer Banking Services

Services: Technology Innovation

Technology: Natural Language Processing

Established visibility and traceability to JIRA user stories during Regulatory Compliance reviews

Ensured compliance pertaining to access, handling, processing, storage or transmission of sensitive data and information

Reduced IS/TISO man-hours overhead relative to reviewing JIRA user stories for encryption requirement

Our Client

Our client is a Fortune 100 global financial services firm offering a comprehensive range of banking and investment products across over 160 countries. Renowned for its innovation and expansive international presence, the company continues to be a dominant force in the financial industry, serving millions of customers worldwide.

Challenge

Sensitive information must always be protected – whether it is being accessed, handled, processed, stored or transmitted. Any technology deliverable with sensitive enterprise data should have the appropriate level of encryption built into the system to ensure the information is protected. The current process is not documented, inconsistent, manual intensive, and does not provide traceability and visibility from a regulatory compliance perspective.  

Approach

  • Any user story identified as dealing with PII or sensitive information handling is tagged by the Natural Language Processing (NLP) engine for IS policy review.

  • Post-NLP engine scrutiny, encryption user stories aligned with IS Policies are added to the JIRA backlog and linked to the original user story for traceability.

  • Information Security analysts and product owner are notified via email of encryption requirements.

Outcomes

  • Provided a repeatable and scalable process to evaluate JIRA user stories for data encryption requirements.
  • Established a proof of concept for Natural Language Processing and a solution architecture that could be scaled to other enterprise needs (e.g. service tickets assignment and prioritization, consumer lending documentation review, etc.)

Impact

  • Established visibility and traceability to JIRA user stories during Regulatory Compliance reviews.
  • Provided a repeatable and scalable process to evaluate JIRA user stories for data encryption requirements.
  • Ensured compliance pertaining to access, handling, processing, storage or transmission of sensitive data and information
  • Reduced IS/TISO man-hours overhead relative to reviewing JIRA user stories for encryption requirement

Enjoy this story? Share it to your network.

View more Case Studies

Empowering Operational Efficiency With GenAI

risk

Issues (Risk) Correlation & Consolidation Analysis

Hybrid Cloud Analytics

Ready to transform your business?

Explore Our Services and Unleash Your Potential Today!

Ready to transform your business?

Explore Our Services and Unleash Your Potential Today!

Let's work together!

3880 PARKWOOD BLVD
BUILDING 2
FRISCO, TX 75034

800.673.6155

info@worldlink-us.com