Robotic Processes Automation

Ms.Riya Ranmayan yadav , Ms.Jyoti Chotelal Prajapati

University of Mumbai

Abstract :As organizations accelerate their digital transformation journeys, Robotic Process Automation (RPA) has emerged as a vital technology for enhancing operational efficiency and reducing human error. However, the rapid deployment of software "bots" often outpaces established cybersecurity protocols, creating significant Security and Compliance gaps. This research paper provides a comprehensive analysis of the vulnerabilities inherent in the RPA lifecycle, ranging from unauthorized access to data integrity breaches. By applying the STRIDE threat model, the study systematically classifies risks into technical, identity-based, and regulatory domains. Furthermore, the paper establishes a critical mapping between RPA governance and international compliance standards, including ISO/IEC 27001, NIST, and GDPR. Through a detailed examination of Identity and Access Management (IAM) and the Principle of Least Privilege (PoLP), the research proposes a "Security-byDesign" framework to mitigate automated threats. The findings suggest that while RPA offers immense productivity gains, its longterm sustainability depends on a Zero Trust architecture and immutable audit trails. This paper concludes with a forward-looking perspective on the security challenges posed by Cognitive RPA and Artificial Intelligence integration, offering strategic recommendations for building a resilient and compliant automation ecosystem.

Keywords: Robotic Process Automation (RPA), Cybersecurity, Compliance Mapping, STRIDE Model, Data Privacy, Bot Governance,GDPR, Zero Trust Architecture, NIST Framework, Identity and Access Management(IAM), Principle of Least Privilege(PoLP),Auditability, Credential Vaulting.