About the Speaker
Anand Prasad | Partner
Talk
No to Divide and rule? The case for integrating telcos SOCs.
Most mobile operators tend to have at least two Security Operations Centres (SOCs) – one for the IT side, the other for the mobile network. Some operators even have other SOCs, depending on the services being provisioned. There are several good reasons for combining and integrating these SOCs and even the Network Operations Centre (NOC). This talk will consider the high-level synergies and discuss the rationale for combining SOCs based on threats associated to each type – IT, mobile network and services. At a very high level, there are similar types of DDoS and API-related threats as well as those targeting identity and access management (IAM). Cloud is nevertheless becoming a common factor which means that the threats faced will be the same, at least from a platform perspective. This talk will make the case that we should be driving towards unifying the SOC and NOC environments to enable evolution towards Automated Monitoring Operations and Response (AMOR).
Dr. Anand R. Prasad is a Partner at Deloitte Tohmatsu Cyber (DTCY) where he leads the emerging technology unit and he is Board of Director at Digital Nasional Berhad (DNB). Anand was Founder and CEO of Wenovator LLC, acquired by DTCY, and Senior Security Advisor of NTT DOCOMO. He was CISO, board member, of Rakuten Mobile, where he led all aspects of enterprise and mobile network security (4G, 5G, IoT, Cloud, device, IT, SOC, GRC, assurance etc.) from design and deployment to operations. Prior to that Anand worked in leadership roles in NEC, DOCOMO Euro-Labs, Genista, Lucent Technologies and Uniden. Anand was Chairman of 3GPP SA3 where, among others, he led the standardization of 5G security. He is also advisor to several organizations such as CTIF Global Capsule, GuardRails and German Entrepreneurship Asia. Anand is an innovator with 50+ patents, a recognized keynote speaker (RSA, MWC etc.) and a prolific writer with 7 books and 50+ publications. He is a Fellow of IET & IETE, and Editor of Cyber Security Magazine & Journal of ICT Standardization by River Publishers.
About Deloitte Tohmatsu Cyber
“Deloitte” is the brand under which approximately 415,000 dedicated professionals in independent firms throughout the world collaborate to provide audit and assurance, consulting, financial advisory, risk advisory, tax and related services to select clients. These firms are members of Deloitte Touche Tohmatsu Limited, a private company limited by guarantee incorporated in England and Wales (“DTTL”, also referred to as “Deloitte Global”). DTTL, these member firms and each of their respective related entities form the “Deloitte organization”.
Each DTTL member firm and/or its related entities provide services in particular geographic areas and is subject to the laws and professional regulations of the particular country or countries in which it operates. Each DTTL member firm is structured in accordance with national laws, regulations, customary practice, and other factors, and may secure the provision of professional services in its respective territories through related entities.
Not every DTTL member firm or its related entities provide all services, and certain services may not be available to attest clients under the rules and regulations of public accounting.
DTTL, and each DTTL member firm and each of its related entities, are legally separate and independent entities, which cannot obligate or bind each other in respect of third parties. DTTL and each DTTL member firm, and their respective related entities, are liable only for their own acts and omissions, and not those of each other. The Deloitte organization is a global network of independent firms and not a partnership or a single firm. DTTL does not provide services to clients.