Telecoms Network Security Audit Telecoms Network Security involves the protection of core telecoms networks and systems, along with associated supporting IT platforms. While many Communication Service Providers protect different core network elements or IT systems, very few have a dedicated resource responsible for end-to-end network security. Security management is often fragmented throughout the organisation leading to increased risk. Procuring state-of-the-art security systems does not solve the issue, as many operators have learnt to their cost. An independent, specialist and balanced view of network security mana- gement is a critical exercise that will determine risk status. It provides confidence in knowing business critical network systems and installations will be secured and security management maximized. Præsidium is technically expert in a wide range of communications technologies, including Next Generation telecom networks using IP technology. When undertaking a network security project, Præsidium first identifies the types of security risks prevalent, then analyses and determines their impact on the network operations as well as the business as a whole. Testimonial African Mobile Operator – Telecoms Network Security Audit “Præsidium showed high levels of professionalism and the consultants’ vast industry knowledge and experience were clearly evidenced. The report was delivered on time and I found it very comprehensive with good drill-down detail. Præsidium delivered beyond what was expected.” www.praesidium.com Why Præsidium? Præsidium is a Global Business Assurance consultancy. Founded in 1997, the company has successfully provided risk management consultancy to more than 100 Communication Service Providers in over 80 countries on 6 continents. Præsidium has gained solid recognition in the market amongst its substantial customer base and among global standards agencies. These include the GSMA Security Group & Fraud Forum, the Telemanagement Forum and ETSI.
2
Embed
Telecoms Network Security Auditbackoffice.wedotechnologies.com/media/flyers/Telecoms Network... · Telecoms Network Security Audit ... The report was delivered on time and I found
This document is posted to help you gain knowledge. Please leave a comment to let me know what you think about it! Share it to your friends and learn new things together.
Transcript
Telecoms Network Security AuditTelecoms Network Security involves the protection of core telecoms networks and systems, along with associated supporting IT platforms. While many Communication Service Providers protect different core network elements or IT systems, very few have a dedicated resource responsible for end-to-end network security. Security management is often fragmented throughout the organisation leading to increased risk. Procuring state-of-the-art security systems does not solve the issue, as many operators have learnt to their cost.
An independent, specialist and balanced view of network security mana-gement is a critical exercise that will determine risk status. It provides
confidence in knowing business critical network systems and installations will be secured and security management maximized.
Præsidium is technically expert in a wide range of communications technologies, including Next Generation telecom networks using IP technology. When undertaking a network security project, Præsidium first identifies the types of security risks prevalent, then analyses and determines their impact on the network operations as well as the business as a whole.
TestimonialAfrican Mobile Operator – Telecoms Network Security Audit
“Præsidium showed high levels of professionalism and the consultants’ vast industry knowledge and experience were clearly evidenced. The report was delivered on time and I found it very comprehensive with good drill-down detail. Præsidium delivered beyond what was expected.”
www.praesidium.com
Why Præsidium?Præsidium is a Global Business Assurance consultancy. Founded in 1997, the company has successfully provided risk management consultancy to more than 100 Communication Service Providers in over 80 countries on 6 continents. Præsidium has gained solid recognition in the market amongst its substantial customer base and among global standards agencies. These include the GSMA Security Group & Fraud Forum, the Telemanagement Forum and ETSI.
• Providing an independent and unbiased opinion of the position on Fraud Management.
• Covering key elements of people, processes and tools used for Fraud Management.
• Delivering gap analysis that details the current position, risks identified and industry benchmarking.
Telecoms Network Security Audit
Description
Benefit
Deliverable
Timescales
Technical security audit of the main core telecoms network and/or NGN. This will include:
• Review of security settings around key network elements (HLR/AUC, MSC, IN, GGSN/SGSN, SS7 etc).
• Security review of interfaces with VAS and OSS/BSS elements.
• Identifying potential security risks and likelihood of impact/severity.
• Review of network segregation.
• Encryption & ciphering standards.
• Organisational review of security strategy and management.
• Review of tools used to support security implementation.
Præsidium will assess the overall level of security standards in place relating to the confidentiality, integrity and availability of corporate and customer data across the telecoms network.
• Executive report covering observations together with corrective recommendations and actions required.
• Optional network penetration and vulnerability testing.
• Executive management presentation of high-level findings and agreed way forward.
Approximately 4-6 weeks (2 consultants onsite and offsite).
• Independent and expert perspective of current telecoms security threats and vulnerabilities.
• Identify security risks that occur in complex telcos and provide best practice security recommendations.
• Based on best practice industry standards such as GSMA, ISO & ITU.
Præsidium’s ‘Telecoms Network Security Audit’ provides CSPs with significant expertise and knowledge to enable the implementation of effective and practical business and technical controls to reduce risk.