Security & Trust Center

PCI DSS · ISO 27001 · SOC 2 · Zero-Trust · HSM-backed crypto · 24×7 SOC

Search outlets, transactions, devices…K

IST --:--:--

SOC2 · ISO27001

R. Kulkarni

NOC · Tier-3

Security Posture

A+

BitSight 820 · Mar

Threats Blocked · 24h

184,201

▲ 3.40%

P1 Incidents · 30d

MTTR 14m

Encrypted Volume

100%

AES-256-GCM · KMS

Tokens Vaulted

218.4M

PAN · UPI · VPA

Live SOC Stream

SIEM · Splunk ES

12shighWAF · MumbaiSQLi pattern blocked on /api/loyalty/lookup

34smediumEDC fleet4 devices flagged · root-detection trip

1minfoIAMStep-up MFA enforced for user p.deshmukh@hpcl

3mhighBot mgmtCredential stuffing · 14.2k attempts · CAPTCHA

6mlowVaultKey rotation completed · kek/edc-prod

9mmediumDLPPAN-like value masked in logs · pipeline ok

14minfomTLSPinned cert rotated for switch.hdfcbank.in

Compliance · Certifications

PCI DSS v4.0

PwC India · valid till 2026-08-14

valid

ISO/IEC 27001

BSI · valid till 2027-02-09

valid

ISO/IEC 27017

BSI · valid till 2027-02-09

valid

SOC 2 Type II

Deloitte · valid till 2026-06-30

valid

PA-DSS · EDC stk

NCC Group · valid till 2026-04-12

renewal

CERT-In Empanel

CERT-In · valid till 2027-01-22

valid

RBI · PA-PG

RBI · valid till perpetual

valid

GDPR · DPF

DPO · valid till 2026-12-31

valid

Crypto & Key Material

HSM cluster

Thales Luna · 6N+1

KMS

AWS KMS · CMK · BYOK

PAN tokenization

Format-preserving (FF3-1)

TLS

1.3 only · mTLS to switch

Cert pinning

All EDC + Edge gateways

Key rotation

90d · automated · audited

WAF block-rate · 1h

12.4M

L7 DDoS

8,210

SQLi

4,128

XSS

182k

Bot