Operational Excellence in Cybersecurity for Global Telco

Overview

The client, a global telecom firm serving over 100 million customers across the MENA and Southeast Asia region, faced critical cybersecurity gaps, including excessive alerts and outdated infrastructure. Tech Mahindra partnered with the client to deploy a hybrid Managed Security Service Provider (MSSP) model, incorporating automation and governance, to streamline security operations.More

The client, a global telecom firm serving over 100 million customers across the MENA and Southeast Asia region, faced critical cybersecurity gaps, including excessive alerts and outdated infrastructure. Tech Mahindra partnered with the client to deploy a hybrid Managed Security Service Provider (MSSP) model, incorporating automation and governance, to streamline security operations. This collaboration focused on stabilizing infrastructure, reducing alert fatigue, and enhancing cybersecurity capabilities to build a secure, efficient, and future-ready operational framework.

Less
metallic-teal-blue-curves-blue-bg-thumb

Client Background and Challenges

  • Over 30,000 alerts led to operational inefficiencies and strained response capabilities.
  • 45+ unmonitored assets across the network exposed potential vulnerabilities.
  • Aging infrastructure limited performance, scalability, and resilience.
  • Limited cybersecurity solutions constrained the client’s B2B ecosystem.

Our Approach and Solution

Tech Mahindra partnered with the client to address cybersecurity issues and streamline operations through a hybrid MSSP model by combining skilled resources, automation, and governance. Key actions included:

People Enablement

The transition team was onboarded within one week, thanks to the hybrid MSSP model, which ensured a cost-effective deployment of skilled resources.

Process Optimization

Implemented a three-tier governance structure and ensured a smooth SOC (Security Operations Center) transition with zero escalations; log tuning reduced alarms by 30%.

Technology Stabilization

Patched servers, replaced outdated hardware, and introduced a structured maintenance calendar to stabilize SIEM (Security Information and Event Management) operations.

Tool Deployment

Leveraged LogRhythm, Sentinel, Tenable, FortiGuard IR, and Cyble to deliver full-spectrum security coverage across the client’s IT and network infrastructure.

Business and Community Impact

  • Operational Efficiency: Achieved a 30% reduction in alarms, supported by 140+ runbooks and automated dashboards to streamline response.
  • Standardized Threat Management: Implemented 666 MITRE-mapped rules and 10 SIEM onboarding guides to enhance consistency and resilience.
  • Business Benefits: Reduced operational costs, expanded cybersecurity services, and strengthened stakeholder trust through regular governance.