Information management Governance ESG REPORT 2022-23 ESG is an opportunity Infosys cyber security is an amalgamation of the cyber security strategy that is aligned to the Innovations and service Industry recognition business goals, the Infosys cyber security framework and a strong cyber governance program ENVIRONMENT that is driven through the Information Security Council. The Infosys cyber security strategy has offerings • Leader in the Avasant Risk and Compliance been designed to minimize cyber security risks and is aligned to business goals. It's objectives Services 2022 Radarview SOCIAL focuses on proactive enablement of business, along with ensuring continual improvement in • We have a portfolio of cyber security service • Leader in the Avasant Cyber security the compliance posture through effective monitoring and management of cyber events. Infosys offerings and solutions to strengthen our Services 2022 Radarview believes that an effective security culture would complement its cyber security objectives capability. In the last financial year, we made GOVERNANCE by reducing the risks for the enterprise. Infosys cyber security program is a reassurance that huge progress in the Cyber Next modules • Major Player in IDC MarketScape: Worldwide the required controls and processes are implemented, monitored, measured, and improved like Cyber Watch, Cyber Intel, Cyber Hunt, Managed Cloud Security Services in the Performance on governance goals continuously to mitigate cyber risks across cyber security domains. Cyber Scan, Cyber Gaze, Cyber Compass, Multicloud Era 2022 Vendor Assessment Cyber Central and Managed Protection • Major Contender in the Everest Group IT Corporate governance Detection and Response (MPDR) and Security Services PEAK Matrix Assessment Data privacy Our approach have also onboarded customers to these 2022 - North America. solutions and platforms • Major Contender in the Everest Group IT Information management • We have rolled out a new service offering Security Services PEAK Matrix Assessment WHAT SECURE BY DESIGN SECURE BY SCALE SECURE THE FUTURE addressing requirements for Zero Trust 2022 - Europe • Maximize visibility • Optimize cost • Innovate faster Assessment, establishing Secure Modern • Major Contender in the Everest Group WHY • Minimize risk • Amplify reach • Deliver value Workplaces and achieving convergence of IT Managed Detection and Response (MDR) • Early engagement • Rapid development • Thought leadership and OT security framework Services PEAK Matrix Assessment 2022 • We have strong strategic partnerships with over 50 global partners to help enhance and Cyber security governance • Awareness and culture • Platforms and accelerators • Competency building strengthen our cyber security solutions. at Infosys • Security architecture • Integrated and optimized • Research and innovation • In the endeavor to serve our customers with HOW • DevSecOps • Automation • Co-created partner solution assured digital trust, we have built several • Infosys has a robust and comprehensive • Intuitive dashboards • Managed security service • Emerging technologies POVs and collaterals with the help of our cyber security program, managed by a • Compliance • Academic collaboration highly professional SMEs dedicated unit called Information Security • We have a global network of seven Cyber Group. Infosys has multi-layered controls Defense Centers spread across EMEA, US with a defense-in-depth approach starting and APAC, and a strong set of innovation from a robust cyber security strategy hubs and integrated platforms. supplemented by policies, processes and controls (preventive, detective, and corrective). A full-time Chief Information Security Officer (CISO) has the overall responsibility for the Infosys cyber security program. The Infosys Board of Directors and the senior management oversee the execution of the cyber security program through the CISO. Infosys | ESG REPORT 2022-23 External Document © 2023 Infosys Limited 63