Modernizing Secure Access for a Leading Financial Broking Firm

Location
Mumbai

Domain
Financial Services – Broking

Solutions Offered
Prisma Access SASE with Prisma Access Browser

Overview:

The client is a well-established name in the Indian financial services and retail broking industry, offering a wide range of investment services, including equities, derivatives, mutual funds, and portfolio management. With a strong digital presence and a large workforce that includes third-party partners, the organization needed a way to secure data while enabling flexible access

Challenges:

As regulations around data privacy and security, like India’s DPDP Act, tightened, the company faced growing pressure to ensure secure access for all users, including employees and contractors. The rise of BYOD (bring your own device), along with widespread use of SaaS apps, WhatsApp, and generative AI tools, made it difficult to control data flow and prevent leaks.

At the same time, the firm’s existing tools like VPNs, VDI setups, and secure web gateways were starting to feel outdated. They were expensive to maintain, hard to scale, and didn’t provide the flexibility needed for today’s fast-paced work environment.

Key concerns included:

Meeting DPDP and SEBI compliance requirements
Preventing data loss across SaaS, Gen AI apps, and chat tools
Managing access from personal (unmanaged) devices
High costs and complexity of traditional VDI and VPN systems
Lack of detailed visibility and control across users and apps

Solution:

To address these challenges, we suggested them the Prisma Access SASE, with Prisma Access Browser as the core solution. This approach allowed them to completely rethink how secure access could work in a modern business setting.

Instead of relying on heavy, agent-based tools, we opt for browser-based isolation to give users secure access without the need to install anything on their devices. Features like session recording, download and upload restrictions, watermarking, and copy-paste blocking added an extra layer of protection.

Even more importantly, it allowed the company to:

Control who could access what, based on user role, device type, and location
Support both internal employees and external users without compromising security
Replace or reduce dependency on VPN, SWG, and VDI setups
Simplify IT operations while improving compliance

What We Overcame Together

The transition wasn’t without its hurdles. We had to:

Carefully define access roles for different types of users
Help the team shift away from familiar tools like VPNs and VDIs
Train users on how to securely access apps through the new browser-based method
Ensure compliance across languages and regional teams
Minimize disruption during the migration process

But with strong planning, collaboration, and user-friendly tools, the changeover was smooth and effective.

Benefits:

The company now has a modern, secure access solution that works for everyone, whether they’re using a corporate laptop or their phone. It’s easier for the IT team to manage, fully compliant with evolving regulations, and flexible enough to scale as the business grows.

They’ve gained:

Safe, seamless access to both cloud and internal apps from any device
Strong data protection controls, even on BYOD endpoints
Reduced costs by retiring legacy VPN and VDI systems
Higher user satisfaction and productivity thanks to a more flexible setup

This project marked a major shift in how the client manages secure access. By moving to Prisma Access SASE with Browser, they’ve future-proofed their infrastructure, met compliance standards, and created a better experience for everyone without sacrificing security.