November 07, 2017 / by jburks / In case-studies /

Securing Telecom

Overview

Telecom service providers (TSPs) manage some of the largest network operations in the world. TSPs are currently having a tough time pulling out margins due to fierce competition, and therefore require optimization of their infrastructure and data analytics to diligently track their progress.

Challenges faced
  • Restriction of access and usability of networks and services to authorised users only
  • Restriction on appropriated users to access and operate on authorised data only
  • Support for confidentiality by network infrastructure, as per the network security policies
  • Protection of networking infrastructure against unsolicited access and unauthorised operations
  • Anomaly detection
  • Support from network architecture for different security policies and mechanisms of varying strengths
How we help
  • Unified threat detection

    TSPs have the responsibility to address security vulnerabilities that are inherent in specifications such as architectures, frameworks, and protocols. Even with adequate knowledge about the threats, risks, and vulnerabilities associated with data processing and communications networks, adequate security cannot be achieved unless security measures are systematically applied in accordance with relevant security policies.

  • Real time data monitoring and analytics

    DNIF can ingest data from any device, be it network devices, servers, applications, DLP /IDS/ IPS engines, or BYOD platforms.DNIF enables enterprises to integrate devices and alter the flow of data. The ability to create widgets, dashboards, and alerts makes it easier to monitor the security KPIs for network devices. Based on business or security use case reports, alerts can be generated autonomously, depending upon the defined rules and threshold values; once triggered, a report or an email notification can automatically be sent to the concerned stakeholder. This automates the workflow to a great extent and reduces the response time.

    Data can be sent via various streams as shown:

Data can be sent to DNIF via various channels like TCP, UDP, http, https, netflow
  • Audit and compliance management

    Different countries have different legislations and regulations mandated around security standards for the telecom operators to adopt. For instance, a lot of TSPs provide varied services to non-telecom customers, and as a service provider they sometimes also need to demonstrate compliance against various other standards like HIPPA, PCI DSS, etc.

    Operators have to undergo various audits (both internal and external) against different standards, and have to regularly demonstrate operational effectiveness against multiple security controls, as per these standards. The internal processes need to be designed considering the 5 Ws - ‘who’, ‘what’, ‘when’, ‘where’, and ‘why’ – for various activities performed within the network, which can be effectively managed by creating widgets for individual compliance requirements or sections. Integrating all such widgets will give a comprehensive outlook on the existing compliance enforcement levels within the organization.