Should telecommunications companies focus more on preventing DDOS attacks?

1.3k views2 Comments

Sort by:

Board Member, Advisor, Executive Coach in Software4 years ago

I've had this dialogue with telecommunications folks and they say, "We can't stop DDOS attacks because we'd be liable for disrupting somebody's business among other legal ramifications, and there are laws to keep certain services on." They wash their hands of it when in reality they could take action. They don't because of the complex rules they're under.

Managing Partner & CISO in Software4 years ago

Telecommunications companies and law enforcement should be more deliberate in certain things they do. There's no reason why telcos should be transmitting DDOS attacks. They can spot it, so they should stop it. But they're like, “It's not our network.”

Content you might like

Digital transformation isn’t just about new tools—it’s about changing how teams work. Key lessons I’ve observed:

1. Start with process bottlenecks, not technology
2. Empower cross-functional teams
3. Measure outcomes, not outputs

What has been the most surprising lesson your teams have learned during a transformation?

What is the best work travel advice you’ve ever been given?

How likely are you to use Kaspersky’s new online cybersecurity training program to enhance your team’s skills?

Very likely4%

Likely41%

Moderately likely25%

Moderately unlikely9%

Unlikely13%

Very unlikely6%

Unsure

View Results

Seeking input: Has anyone drafted an SOW for a cloud-based SIEM with setup, migration, and maintenance? I’m working on a FedRAMP-authorized SIEM SOW, migrating from on-prem Splunk, covering data, searches, alerts, dashboards, and models.
Scope includes Environment Setup:
Cloud provisioning, configuration, testing.
Connectors/Parsers: Custom data source integration.
Content Development: Rules, use cases, threat feeds.
Performance Tuning: Query/index optimization.
Runbooks: Operational procedures.

Also required: 24x7 support, maintenance, lifecycle and application management, role-based training, and documentation.
Must comply with NIST SP 800-53, CJIS, and FedRAMP Moderate+. Goal: Secure, scalable SIEM for rapid deployment. I may be missing elements, so suggestions are welcome. Please share redacted SOWs or tips if possible.

How frequently do you meet with your Board?

Annually13%

Quarterly58%

Monthly15%

No regular meetings12%

Other1%

View Results

Should telecommunications companies focus more on preventing DDOS attacks?

Sort by:

Content you might like

What is the best work travel advice you’ve ever been given?

How likely are you to use Kaspersky’s new online cybersecurity training program to enhance your team’s skills?

How frequently do you meet with your Board?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go