Elisa Praises Placing Cybersecurity at Heart of Operations

Finland’s Elisa has set a benchmark for telecom operators by embedding cybersecurity directly into service delivery. The hybrid cSOC replaces the traditional split between network operations and security teams, allowing real‑time monitoring of customer‑facing services and automatic remediation of anomalies. This unified approach not only streamlines incident handling but also creates a data‑rich environment where patterns of malicious activity can be detected earlier, driving an 83% reduction in service‑impacting events since 2011.

The cSOC’s customer‑centric monitoring proved decisive during a DDoS episode linked to the pro‑Russian NoName057(16) group. By spotting traffic spikes on its website and online shop, Elisa initiated manual mitigation within a minute, limiting service degradation to a brief interruption. Such rapid response showcases how integrated security operations can protect critical digital channels, especially for operators situated near geopolitical flashpoints where state‑sponsored attacks are more likely.

Beyond DDoS defense, Elisa’s proactive stance extends to fraud prevention. By suppressing caller‑ID spoofed numbers, the telco reduced answered fraudulent calls from 90% to 10%, driving fraud proceeds down to €2,700—a dramatic drop from €7 million. The company also flags AI‑enhanced threats, recognizing that automated vulnerability discovery and personalized phishing will shape future attack vectors. Elisa’s experience underscores that telecoms must evolve from reactive security silos to holistic, AI‑aware operations to safeguard both infrastructure and customer trust.