Some of 5G security practices to start with

World-renowned organisations keep working on 5G security best practices for quite some time already. Just few examples:

• NIST/NCCoE on 5G Cybersecurity
• ENISA 5G Security toolbox followed by Certification

It’ is important to create actionable guidelines and share knowledge. Especially when the topic is so multidimensional with that many stakeholders.

At SecurityGen we continue to contribute by providing case studies; sharing experience, ideas and tools for telecoms operators and other companies which utilise mobile 5G networks and private instances.

You can find latest article here. It describes some of the security practices that may help to address common organisational challenges and specific technical issue, that you can face while deploying 5G.

I’d like to highlight specific exercises that we tried with security teams to resolve organisational obstacles:

• The first step is understanding business objectives of the organisation. Security cannot operate in isolation and must align with the overall company goals.
• Second, it is essential to communicate to the management and the board (if possible) how cyber-security could be an enabler for business; you can try organising a cyber-security masterclass for leadership team.
• Third, highlight the importance of ensuring the security of telecom network assets together with the enterprise IT segment. You can organise a cyber-drill simulating attacks targeting not only enterprise/IT infrastructure but also telecom/5G network assets.
• Don't scare the business with giant strategic plans (=cost) or tactical turmoil of action items. It would be effective to propose strategic objectives to manage cyber-risks and specific steps for quick wins, which demonstrate that you are on the right path.

May sound obvious, but the rest of efforts may be useless unless the initial setup is properly done.

For precise tech ideas please check the article.?

#SecurityGen #5gsecurity

Links

1. NIST/NCCoE on 5G Cybersecurity https://www.nccoe.nist.gov/5g-cybersecurity
2. ENISA 5G Security https://www.enisa.europa.eu/publications/5g-cybersecurity-standards/@@download/fullReport , https://www.youtube.com/watch?v=03zxrb2Fc0A&ab_channel=ENISAvideos
3. SG 2nd issue https://secgen.com/5G-Some-security-practices-to-protect-the-5G-assests.pdf