From experience, securing outdated telecom systems demands proactive measures to combat today’s cyber threats. Modern cybersecurity solutions, like endpoint protection and AI-powered threat detection, are game-changers in shielding sensitive data. Pair this with network segmentation to isolate vulnerabilities and virtual patching to address unsupported system flaws. The lesson? Outdated doesn’t mean undefended every system can be fortified with the right strategy.

I participated in a project aimed at providing security upgrades for an outdated system of a telecom operator. Due to its age, the system had many security vulnerabilities. To tackle these challenges, we adopted modern cybersecurity solutions, particularly zero-trust security architecture and endpoint security management. We introduced a zero-trust security solution based on the zero-trust security concept, building a security protection system from three levels: devices, identities, and behaviors. We were able to achieve dynamic verification of user identities, real-time monitoring of devices, and continuous analysis of user behaviors, effectively detecting and preventing risks such as identity fraud, device fraud, and user behavior fraud.

One of our verticals is the engineering sector and due to their particular business models, many are still running on-prem systems of varying ages. Our solutions have come by way of an overall rethink of both IT and Telecoms and how they work symbiotically, ensuring that the necessary security required for IT overlaps and provides that same security for the telecoms. Initially, we always look to use secure comms, either by way of TLS via SIP and then either full SBCE with VLANs for voice traffic, tied in with strict firewall policies for end user profiles. EoT is also bringing new challenges for comsec due to the very nature of what it is - watch those ports….

From my understanding Patch Management - Apply available patches to protect against vulnerabilities in systems without regular updates. Deploy NGFWs and IDS to monitor, filter, and block malicious traffic targeting legacy systems. Enforce strict access policies to limit who and what can connect to sensitive network areas. Restrict and monitor administrative access to critical systems. Use monitoring tools to detect, monitor, and respond to threats on legacy endpoints in real-time. Conduct regular cybersecurity training to help users recognize and avoid common threats like phishing.

Personnalisation : Choisissez des solutions qui peuvent être personnalisées pour répondre aux besoins spécifiques de votre infrastructure. Par exemple, Fortinet propose des solutions de cybersécurité pour les réseaux mobiles et 5G, avec des options de personnalisation pour différents cas d'utilisation Surveillance et mise à jour : Surveillez en continu votre système de télécommunications pour détecter toute activité suspecte. Mettez régulièrement à jour vos solutions de sécurité pour faire face aux nouvelles menaces