How would you implement IAM, encryption at rest and in transit, and compliance controls like PCI-DSS or HIPAA for a client solution at Mphasis?