Should telecommunications companies focus more on preventing DDOS attacks?

1.3k views2 Comments

Sort by:

Board Member, Advisor, Executive Coach in Software4 years ago

I've had this dialogue with telecommunications folks and they say, "We can't stop DDOS attacks because we'd be liable for disrupting somebody's business among other legal ramifications, and there are laws to keep certain services on." They wash their hands of it when in reality they could take action. They don't because of the complex rules they're under.

Managing Partner & CISO in Software4 years ago

Telecommunications companies and law enforcement should be more deliberate in certain things they do. There's no reason why telcos should be transmitting DDOS attacks. They can spot it, so they should stop it. But they're like, “It's not our network.”

Content you might like

Digital transformation isn’t just about new tools—it’s about changing how teams work. Key lessons I’ve observed:

1. Start with process bottlenecks, not technology
2. Empower cross-functional teams
3. Measure outcomes, not outputs

What has been the most surprising lesson your teams have learned during a transformation?

What is the best work travel advice you’ve ever been given?

Facebook is suffering its worst service outage since 2008 today, with Facebook, Instagram, and WhatsApp being down for more than four hours so far. What do you think is the root cause of the issue?

DNS Issue25%

Insider Threat50%

Data Warehouse outage14%

Cyber Attack7%

Other (share below!)2%

View Results

Seeking input: Has anyone drafted an SOW for a cloud-based SIEM with setup, migration, and maintenance? I’m working on a FedRAMP-authorized SIEM SOW, migrating from on-prem Splunk, covering data, searches, alerts, dashboards, and models.
Scope includes Environment Setup:
Cloud provisioning, configuration, testing.
Connectors/Parsers: Custom data source integration.
Content Development: Rules, use cases, threat feeds.
Performance Tuning: Query/index optimization.
Runbooks: Operational procedures.

Also required: 24x7 support, maintenance, lifecycle and application management, role-based training, and documentation.
Must comply with NIST SP 800-53, CJIS, and FedRAMP Moderate+. Goal: Secure, scalable SIEM for rapid deployment. I may be missing elements, so suggestions are welcome. Please share redacted SOWs or tips if possible.

Who currently owns the risk in your organization?

IT Director/Other Senior IT Manager23%

CISO/Other Senior Security Manager51%

Senior Manager in another part of the organization10%

CEO/other board member11%

operational risk3%

Other (comment below)

View Results

Should telecommunications companies focus more on preventing DDOS attacks?

Sort by:

Content you might like

What is the best work travel advice you’ve ever been given?

Facebook is suffering its worst service outage since 2008 today, with Facebook, Instagram, and WhatsApp being down for more than four hours so far. What do you think is the root cause of the issue?

Who currently owns the risk in your organization?

What sets us apart?

RELATED ONE-MINUTE INSIGHTS

How are U.S. CISOs Addressing Liability Risk?

CrowdStrike Outage: Impact And Recovery

Impact & Perceptions of A Privacy-First Digital Era

Challenges & Tools For A Privacy-First Internet Age

IT and Infosec Collaboration on Vulnerability Patching

Take Your Insights On-the-Go