- Cyber defense for SMEs
- Solutions that safeguard against targeted cyber attacks
- Early detection with the Cyber Threat Detector
Telekom now offers SMEs a level of security which only major corporations have been able to afford until today. At CeBIT this year Deutsche Telekom is presenting two solutions that provide a comprehensive security shield to ward off cyber attacks: the Cyber Threat Detector and Cyber Defense for SMEs.
Conventional firewalls and antivirus software offer protection against mass attacks. However, they are not effective when it comes to specifically targeted hacking. In these cases – known as advanced persistent threats – hackers take advantage of security gaps in software programs to manipulate IT systems without being detected. They conceal themselves in the networks of their victims for extended periods of time, and gradually work their way toward gaining access to the "crown jewels" in an enterprise, namely valuable business data. Hackers usually do this without even being detected.
In the past, Cyber Defense (ACD) – the highly complex defense systems needed to safeguard business data – were usually found only in those large enterprise having vast IT resources. Now, at CeBIT 2015, T-Systems is presenting ACD for small and medium-sized enterprises (SMEs) for the first time. This solution enables SMEs to protect their networks and know-how from professional hackers in real time – without having to employ their own security experts. They can detect attacks early and take the steps necessary to safeguard their mission-critical data and prevent theft before hackers can do any damage. The solution covers the entire security chain needed for protection against professional cyber attacks: An Intrusion Prevention System (ISP), along with analyses based on Security Incident and Event Management (SIEM), support a preventive approach to defense. However, if hackers should still penetrate an IT system, the Security Operations Center (SOC) is a tool that can detect, quarantine and remove malware.
Service available in two versions
Cyber Defense for SMEs is based on the Unified Security Management (USM) platform from AlienVault. AlienVault USM combines all of the essential security capabilities needed for defense against today’s advanced threats in one solution, which is then powered by up-to-the minute threat intelligence from AlienVault Labs and AlienVault’s Open Threat Exchange (OTX). AlienVault USM provides status reporting, alerting and analysis of security gaps for the detection of threats, monitoring of incident behavior and the correlation of anomalies with current information available on malware.
T-Systems offers two versions of Cyber Defense for SMEs. Telekom's unit for business accounts provides "Platform Operations" which includes hardware, licenses, monitoring, maintenance (updates and patching) and resolves issues at system and application level. T-Systems hosts the core element of this security solution in an extremely secure data center in Germany. Sensors installed in customer environments detect any attacks well in advance.
Version 2: The AlienVault USM platform is also part of a comprehensive security system known as the Next Generation Security Operations Center. This is where T-Systems monitors activities in the SOC to analyze and deal with attacks, while also hosting platform operations at the same time.
Cyber Threat Detector for the entry level
The Cyber Threat Detector is the entry-level solution from Telekom. It works according to the principle of a Cyber Defense Center – but on a smaller scale and with more standardization: The new solution gathers, aggregates and visualizes all log data generated by a specified firewall. The detector then compares this data with information about current and past cyber attacks and their control structures. If the solution recognizes communication patterns, it issues an alarm so that immediate steps can be taken. What's more, the detector also tracks data traffic entering and leaving the business enterprise in real time, then visualizes this information according to specified parameters, e.g., destination countries, internal network segments and protocols used. Thus, for example, security administrators can see whether data from network segments is streaming out of the business enterprise in areas where this should normally not occur. For the purpose of analysis, the new tool supports easy collation of relevant data directly in the graphic interface using various filter options.
Enterprises interested in the Threat Detector profit from the vast network and analyses available from Telekom: The solution compares attack indicators from Germany's Federal Office for Information Security (BSI), hacking patterns that are known to Telekom, data from general cyber attack analyses, and data from the 180 honeypots that are used to provoke cyber attacks for analysis purposes. Telekom is exhibiting a pilot version of the Cyber Threat Detector at CeBIT.
Analysts: Telekom is the security leader
According to the study "Security Vendor Benchmark" from Experton, T-Systems leads the market in Germany when it comes to managed security services. The analysts awarded T-Systems the highest ranking in the categories for analysis solutions for gathering and evaluating security information and events (Security Information & Event Management – SIEM), security solutions from the cloud for mobile devices (Mobile Security as a Service) and security infrastructures (Managed Security Services). Experton analysts evaluated offerings from 450 security providers doing business in Germany.
Cyber Defense is another cloud service that Deutsche Telekom offers for the SME segment. Telekom hosts the majority of the applications in its own cloud data centers in Germany. These data centers comply with the high standards that apply to IT security and operations in Germany – user data is safeguarded in accordance with stringent data protection directives.
Experience our products and services live at CeBIT from March 16 - 20 at the Deutsche Telekom stand in hall 4, stand C26. Deutsche Telekom's entire presence at the trade fair is carbon-neutral: All CO2 emissions generated in setting up and operating the stand are offset fully by carbon-reduction projects abroad.
About Deutsche Telekom
Deutsche Telekom is one of the world’s leading integrated telecommunications companies with around 151 million mobile customers, 30 million fixed-network lines and more than 17 million broadband lines (as of December 31, 2014). The Group provides fixed network, mobile communications, Internet and IPTV products and services for consumers and ICT solutions for business customers and corporate customers. Deutsche Telekom is present in more than 50 countries and has approximately 228,000 employees worldwide. The Group generated revenues of EUR 62.7 billion in the 2014 financial year – more than 60 percent of it outside Germany.