Skyscrapers, in the foreground pictograms of security locks

Managed cyber defence: round-the-clock resilience

Asia-Pacific's evolving cyber security landscape, barring unforeseen black swans, can be anticipated and prepared for

Are your business processes reliably protected?

Close-up man observes data texts on a transparent screen.

Professionally implementing cyber security and keeping it up to date at all times is frequently associated with a huge personnel and technological outlay for companies. This doesn’t have to be the case: Managed Cyber Defense gives you all the required security solutions from a single source. Our managed services protect you against cyber threats, ensure business continuity and provide round-the-clock smooth business processes. This ensures that your employees are more efficient and can implement their ideas faster.

White paper: Managed Cyber Defense for Retail

As modern retail players adopt newer technologies like data analytics, cloud, artificial intelligence (AI), automation, and more – are the cybersecurity measures enough? How can they secure their business? How managed cyber defense can help SMEs?

Managed Cyber Defense backs up companies

Professional cyber security protects companies against risks and helps them to optimize their value creation. In the context of Managed Cyber Defense, we take care of all security issues and offer all-round protection. Trust in the expertise of our security experts and our longstanding experience from numerous international customer projects. Our experts continuously check your security measures and keep you up to date. This frees up your time to develop your business and drive forward innovation.

Why security software alone is insufficient

If companies only rely on preventive measures such as firewalls or virus scanners, they are making it all too easy for professional hackers. For effective protection against cyberattacks, they must pay equal attention to prevention, detection, and response. Only modern software tools and teams of specialists who coordinate closely with one another and take care of cyber defense around the clock can help in the fight against cybercriminals – this is the only way to promptly mitigate attacks. This is precisely what the Security Operations Center (SOC) from Telekom Security offers.

Managed cyber defense

Why should cyber security be a matter of course for your company, and what elements does it include? You can discover this and more in our white paper “Managed cyber defense: working around the clock to prevent cyber attacks.”

Security Operations Center: Professional cyber defense around the clock

Dark room with many PC monitors and a large screen with digital patterns

As part of Managed Cyber Defense, we offer a comprehensive security portfolio from a single source – from the firewall through to services from our security operations centers. Telekom Security manages Europe’s largest and most advanced cyber defense center in Bonn and operates a global network of defense centers in Asia, North and South America, Africa, and several other locations in Europe.

  • In Bonn alone, more than 240 experts safeguard the security of Telekom’s systems and those of its customers.
  • Our cyber defense centers analyze around 2.5 billion notices on potential security incidents every single day.
  • Our teams have identified more than 20 million attack patterns. We have one of the largest threat intelligence databases in the world.

An SOC (Security Operation Center) works like a command bridge whose security experts monitor the threat level and can intervene immediately.

Rüdiger Peusquens, head of cyber defense and Senior Vice President Security Testing at Deutsche Telekom

Comprehensive security with SOC: prevention, detection, and response

Anyone wishing to setup effective cyber defense must consider prevention, detection, and response. The Security Operations Center strikes when hackers get past the firewall, at the very latest. It’s only with comprehensive cyber security that you can protect your value creation and make your company fit for the long-term future.

How does a Security Operations Center (SOC) work?

The job of SOCs is to detect professional cyberattacks at an early stage. Then they initiate targeted countermeasures. They are also constantly monitoring and analyzing activities across the entire IT landscape networks, servers, mobile and stationary clients, databanks, applications, web servers, and additional systems. In so doing, they are searching for unusual activities which could indicate a security incident. Operational technologies (OT) in industrial networks can also be managed this way. The SOC is responsible for correctly identifying, analyzing, reporting, and mitigating potential security incidents.

Identifying complex attack patterns in real time

The Security Information and Event Management (SIEM) is the SOC's alarm system, making it an important technological and methodological component. While SOC comprises people, processes, and technologies, SIEM is an IT-security tool, which uses many sources to identify attacks. It orchestrates the continuous collection of log data from end points such as PCs, servers, routers, switches, applications, firewalls, and other systems and evaluates these data. SIEM enables a holistic approach to IT-security. It correlates notifications and alarms in real time and identifies unusual patterns or trends, which could point to a cyberattack. SIEM also uses machine learning (ML) and artificial intelligence (AI) processes. These tools are available as services from the cloud.

Separating data, mutual benefit

The Security Operations Center at Telekom Security serves a wide range of clients in various industries. Data from different customers is kept strictly separate for compliance reasons. All clients benefit equally on a single platform from the continuously growing experience of our security analytics. This enables synergies for our SOC with regard to costs and is more effective than a laborious in-house operation. We offer security along the entire digital chain: ranging from network monitoring to client and server system protection to safeguarding industrial systems. From the billions of pieces of data, our analysis teams extract the relevant indicators for attacks and process suspicious cases in fractions of a second. In the final step, they analyze actual breaches and initiate countermeasures.

This is how it works: Four steps to SOC

  1. Creating an asset map
    Alongside technical assets, this also includes the employees from the organization’s security team. They supply the contextual intelligence and contact points during the design phase and when reacting to incidents.
  2. Identifying sensitive data
    Now it’s about scrutinizing critical infrastructure, sensitive data and accounts which require continuous monitoring and protection. It is necessary to develop threat models to detect scenarios which could cause damage.
  3. Defining critical scenarios
    Which use cases have the greatest impact on business survival? We work with you to meticulously list all scenarios.
  4. Determining a suitable strategy
    We develop a strategy template, which facilitates a make-or-buy decision and shows how an SOC complements or improves your security strategy.

Ensuring future security

What cyber security measures should be a given for your company? Which building blocks are important? Our experts answer your questions and offer all-round protection for your company – now and in the future.

Do you visit t-systems.com outside of China? Visit the local website for more information and offers for your country.