-
Products
- Alphabetical List
- Business & Industry Applications
- Cybersecurity
- Data and Analytics
- AI and Intelligent Operations
- Total Experience
- Sovereign Collaboration
- Specialized Software
- HCL Actian
- HCL Actian Data Platform
- HCL Actian Ingres
- HCL Aftermarket Cloud
- HCL AppScan
- HCL Automation Orchestrator
- HCL Automation Orchestrator Suite
- HCL BigFix
- HCL CAMWorks
- HCL Clara
- HCL Commerce Cloud
- HCL Connections
- HCL Customer Data Platform
- HCL DataConnect
- HCL DFMPro
- HCL Discover
- HCL Domino
- HCL DX
- HCL DevOps Code ClearCase
- HCL DevOps Code RealTime
- HCL DevOps Deploy
- HCL DevOps Plan
- HCL DevOps Model RealTime
- HCL DevOps Test
- HCL DevOps Test Embedded
- HCL DevOps Velocity
- HCL Glovius
- HCL Hero
- HCL HIVE
- HCL iAutomate
- HCL iControl
- HCL Informix
- HCL IntelliOps
- HCL IntelliOps Event Management
- HCL iObserve
- HCL Leap
- HCL Link
- HCL Mainframe Solutions
- HCL Marketing Cloud
- HCL Marketplace
- HCL MyCloud
- HCL MyXalytics
- HCL Nippon
- HCL Notes
- HCL Now
- HCL SafeLinx
- HCL Sametime
- HCL Secure DevOps
- HCL SX
- HCL TX Platform
- HCL Unica
- HCL Vector Analytics
- HCL Verse
- HCL Volt MX
- HCL Workload Automation
- HCL Z Asset Optimizer
- HCL Z Abend Investigator
- HCL Z and I Emulator
- HCL Zeenea Data Discover Platform
- HCL Zen Edge Data Management
- HCL Aftermarket Cloud Aftermarket-led growth platform
- HCL Commerce Cloud Enterprise e-commerce for B2C and B2B
- HCL CDP Flexible and customizable customer data platform
- HCL Discover Behavioral insights for customer journeys
- HCL Marketing Cloud Fueling precision marketing at scale with AI
- HCL Unica Enterprise marketing automation platform
- HCL AppScan Scans for application vulnerabilities
- HCL BigFix Secure endpoint management
- HCL BigFix Compliance Ensure security with continuous, real-time compliance monitoring
- HCL BigFix CyberFOCUS Supercharging IT operations to secure the enterprise
- HCL BigFix Remediate Automate, remediate & secure endpoints
- HCL Actian Empowers the data-driven enterprise
- HCL Actian Data Platform Data services suite; flexible deployment
- HCL Actian Ingres Legendary transactional RDBMS
- HCL DataConnect Low-code integration platform
- HCL Zeenea Data Discover Platform Cloud-native data governance solution
- HCL Zen Embeddable edge data management
- HCL Automation Orchestrator Suite Accelerate IT and business automation
- HCL BigFix Secure endpoint management
- HCL BigFix AEX AI-driven employee experience accelerating productivity and innovation
- HCL BigFix Enterprise+ An all-in-one IT infrastructure automation offering enabling you to stay ahead of cyber threats
- HCL BigFix Workspace+ Fueling GenAI within the Digital+ experience
- HCL iControl HCL iControl is a business flow and process observability solution
- HCL MyXalytics Cloud finOps visibility and insights
- HCL SX Service management for everything-as-a-service delivery
- HCL Workload Automation Simplify and automation business workflows
- HCL Connections Collaboration and task management in one workspace
- HCL Domino Rapid application development platform
- HCL Leap No code citizen app dev
- HCL Link Connectivity across your digital ecosystem
- HCL Notes Comprehensive email and collaboration hub
- HCL SafeLinx Secure and flexible remote access to enterprise applications
- HCL Sametime Secure meetings, video, and chat communications
- HCL Verse Smart and secure enterprise email for seamless workflow
- HCL Augmented Network Automation (SON)Intelligent RAN automation platform
- HCL Automation Orchestrator Suite Accelerate IT and business automation
- HCL DFMProCAD integrated Design-for-Manufacturing platform
- HCL CAMWorksCAM for machining productivity
- HCL GloviusModern lightweight CAD Viewer
- HCL Mainframe Optimization Optimize, modernize, and innovate your mainframe investments
- HCL Secure DevOps Automated testing and security scanning
- Industries
- Partners
-
Persona
- HCL Commerce Cloud Enterprise e-commerce for B2C and B2B
- HCL CDP Flexible and customizable customer data platform
- HCL DX The DXP for the moments that matter
- HCL Marketing Cloud Fueling Precision Marketing At Scale with AI
- HCL Unica Enterprise marketing automation platform
- HCL Volt MX Multi-experience low code app dev
- HCL Actian Ingres Legendary transactional RDBMS
- HCL Actian Data Platform Data services suite; flexible deployment
- HCL AppScan Scans for Application Vulnerabilities
- HCL BigFix Secure endpoint management
- HCL BigFix AEX AI-driven employee experience accelerating productivity and innovation
- HCL BigFix Enterprise+ An all-in-one IT infrastructure automation offering enabling you to stay ahead of cyber threats
- HCL BigFix Workspace+ Fueling GenAI within the Digital+ experience
- HCL DataConnect Low-code integration platform
- HCL Foundry Secure Backend Services
- HCL iControl HCL iControl is a business flow and process observability solution
- HCL MyXalytics Cloud FinOps visibility and insights
- HCL SX Service management for everything-as-a-service delivery
- HCL Universal Orchestrator Orchestrate and optimize business automation
- HCL Vector Analytics A high-performance, secure vectorized columnar analytics database
- HCL Workload Automation Simplify and automation business workflows
- HCL Zen Embeddable edge data management
- Learn & Support
Contact us Information Security Policy
HCLSoftware is a division of HCL Technologies that develops and delivers a next generation portfolio of enterprise grade software-based offerings with flexible consumption models, spanning traditional on-premises software, Cloud based PaaS, SaaS and bundled managed services.
HCLSoftware is committed to protecting the critical information assets by implementing and maintaining an Information Security Management System (ISMS) to help ensure that its applicable information security objectives are met, and the ISMS is able to adapt to internal and external changes.
The goal of the ISMS is to protect HCLSoftware and its customers information assets from threats identified, whether internal or external, deliberate or accidental.
The Objectives of Information Security Are:
- Maintain the confidentiality of the information such that only authorized persons have access.
- Ensure the integrity of information.
- Arrange for the availability of information such that only authorized persons can access the information, assets and systems whenever required.
The HCL SW aligns with the ISO/IEC 27001:2013 as a base security standard and extends to other security standards, for example ISO 27017, ISO 27018, SOC 2 Type II, PCI and HIPAA.
HCL SW Has an Established Information Security Governance Structure to Effectively and Efficiently Manage the ISMS, Inclusive Of:
- Identification of information assets.
- Management of risks to an acceptable level through the design, implementation, and maintenance ofrisk treatment plans.
- Communication of information security objectives and performance in achieving these objectives.
- Development of security awareness programs and training as appropriate.
- Compliance with local laws and regulations and contractual obligations as relevant to Information Security.
This Information Security Policy Is Supported by Specific Internal Policies in the Following Aspects of Security Management:
- Risk Management – Risks are managed in a standard lifecycle with status reported to senior management at regular intervals.
- Human Resource – Includes controls around culture, mandatory annual trainings, communication, performance evaluation process and termination process.
- Physical and Environmental Security – Includes building perimeter security as well as secure protection mechanisms for internal offices, infrastructure, data center/ server rooms.
- Supplier Management – Includes vendor risk assessment and formal agreements with details of any SLAs required on the supplied product or service.
- Information Security Aspects of Business Continuity - Includes details used to support backup, business recovery and continuity.
- Internal Audit & Compliance – A dedicated team to manage Internal Audit and management of compliance.
- Asset Management – A formally managed register for all assets in HCLSoftware’s environments. Each asset has a structured set of attributes as its definition.
- Access Controls - Includes the definition of unique user ID’s and formal password controls.
- Cryptography – encryption standards are applied.
- Communication Controls [Networks and Firewalls] – Includes details of the protection levels set and the restricted controls for such vital resources.
- System Acquisition, Development, Maintenance – Systems acquisition, development and maintenance of products and environments is managed per policy.
- Information Security Incident Management – Security incidents are captured and managed in a structured lifecycle.
- Security Readiness Standard, Provisioning and Deprovisioning – A minimum security standard is in place for all devices being provisioned to or de-provisioned from its infrastructure.
- Patch Management – Patches are applied to a timeframe based on the severity of the vulnerability.
- Security Monitoring and Logging – Logs are collected and reviewed by the dedicated Security Operation Center (SOC) team to identify alerts of unauthorized activity.
- Vulnerability Scanning / Penetration Testing – Independent Penetration Testing is conducted a minimum of once per year.
- Health Check of Environments / Devices – This is based on the CIS Benchmark controls.