Information Security

Cyber Security Operations

Türk Telekom proceeds with its investments in cyber security in a continuous and stable manner with the aim of managing information security and business continuity risks against increasing cyber threats in the world and in Türkiye. In this context, the Company carries out activities with the aim of strengthening technological infrastructures, improving processes and meeting demand for qualified human resources. Continuing its activities at full speed within the framework of its focus on localisation, the Company aims to provide its customers with quality products and services by going beyond fulfilling its legal responsibilities.

Information Security Management

Determining the steps to be taken for protection against cyber-attacks, unauthorised access and data leaks with various policies and procedures operated in accordance with these policies, Türk Telekom annually reviews these policies, procedures and standards in line with the world trends, regulations in our country and business requirements. Access, authorisation and controls to all these documents, which are open to personnel access through the Corporate Türk Telekom Portal, are carried out according to these standards.

In 2022, Türk Telekom's technology infrastructure, information security management systems, business continuity and contingency plans were audited by external auditors and the process was concluded successfully. TS ISO/IEC 27001 certificate was renewed following the external audit conducted by TSE. In addition, during the year, the continuity of the PCI-DSS certificate, which is the data security standard in the credit card industry, was secured. Within the scope of the information security management system, awareness-raising activities are carried out in the Company and the information security awareness of all employees is kept up-to-date. Awareness training in which more than 90% of the employees participated was assigned, phishing e-mails and monthly information security awareness announcements were sent. As part of the information security awareness week, online panels and competitions with gifts were organised for Company employees.

Security audits and improvement activities were carried out for risks that may arise from the ecosystem of suppliers and business partners, by giving priority to stakeholders related to critical services.

Within the scope of compliance with the Guidelines of the Digital Transformation Office of the Presidency of the Republic of Türkiye, Türk Telekom carried out intensive studies throughout the Company and completed its preparations for compliance. Applications were made to become an accredited company that audits DDO Information and Communication Security Guidelines compliance. Türk Telekom plans to take its place in the category of auditing companies in 2023.

Cyber Security Services

Providing cyber security services to approximately 4 thousand enterprises with more than 30 products and services, Türk Telekom has the largest cyber security portfolio in Türkiye. Every month, thousands of phishing, DDoS and malware attacks are prevented in Türk Telekom infrastructure, and on-site interventions are conducted when necessary. Statistically, it is observed that thousands of DDoS attacks are prevented per week. In 2022, Türk Telekom provided protection for a total of 3,131 large-scale attacks of 1Gbps and above, which were rated in the critical attack category. Owning a security product portfolio to meet the 360° security needs of its customers, Türk Telekom increased the number of its products and customers with shared e-mail security, attack level efforts and its cyber security maturity assessment services, in addition to manageable EDR (End Point Detection and Response) and incident response services in 2022. With its security incident monitoring, security testing, analysis, response, training and consultancy services, the Company is constantly growing its service portfolio. Thanks to capacity increases and infrastructure improvements, especially in shared security infrastructure services, the customer base for cyber security services grew by 60% compared to the previous year.

Pioneering many projects in domestic product development as well as existing corporate security services, Türk Telekom's rate of substituting the foreign products with domestic products increased from 44% in 2021 to 56% in 2022.

Türk Telekom conducts all kinds of transfer of Company data under control with its infrastructure projects. This way, by preventing unauthorised, unpermitted and malicious use, the Company secures its mobile network in signalling and prevents possible attacks.

Training and Camp Activities

The Company organised Türk Telekom Cyber Security Camp and a CTF organisation in order to meet the need for qualified human resources in the field of cyber security and to prepare young people for the cyber security profession, which will be a rising area in the future. Aiming to create a youth employment resource, Türk Telekom provides recruitment and internship opportunities to successful participants of the events. Cyber security personnel are also supported by regular domestic and international trainings in order for them to specialise in their fields and improve their competencies.

Cyber Security Activities

Cyber security risks are increasing for all customer groups with the rapid spread of information technologies. Possible cyber-attacks on the infrastructures of corporate and public customers can lead to dire consequences such as access to personal information of citizens and customers, misuse of the obtained information, deterioration of the integrity of the information and deletion.

Cyber Security Centre aims to meet the security needs of its customers from a 360° perspective, especially with its shared security services family. The Centre has further expanded its product portfolio with cyber intelligence, phishing, detection and intervention services for end device threats, and security testing services that it started to offer in 2021.

Cyber Security Centre aims to meet the security needs of its customers from a 360° perspective, especially with its shared security services family. The Centre has further expanded its product portfolio with cyber intelligence, phishing, detection and intervention services for end device threats, and security testing services that it started to offer in 2021.

Information Security Policies

Türk Telekom determines the steps to be taken in order to be protected from cyber-attacks, unauthorised access and data leaks with various policies. The Company’s Information Security Policy, which is prepared to ensure information security and establish standards and which can be accessed through the corporate Türk Telekom Portal, constitutes the general umbrella policy. In addition, the Company has a wide range of information security policies, procedures and standards such as Access Control Policy, Password Protection Policy, Log Management Policy. All accesses, authorisations and controls are performed in line with these standards.

Türk Telekom’s technology infrastructure, information security management systems, business continuity and emergency plans were audited by external auditors in 2021.

The Company has Cyber Risks and Technology Professional Liability Insurance for information security breaches or other cyber security incidents.

ISO 27001 and PCI-DSS certificates renewed

The TS ISO / IEC 27001 certificate held by Türk Telekom as a requirement of the network and information security regulation in the electronic communications sector has been renewed with an external audit conducted by TSE (Turkish Standards Institution). This certificate is also requested and used in public, private, strategic and similar tenders participated by the Company.

In addition, the certificate was renewed during the year following the audits conducted to ensure the continuity of the PCI-DSS certificate, which is the data security standard in the credit card industry.

Compliance with the Presidency Digital Transformation Office Information and Communication Security Guide

2019/12 Sayılı With the Presidential Circular on Information and Communication Security Measures No. 2019/12, it became obligatory to comply with the procedures and principles set forth in the guide for new information systems to be established in all public institutions and organisations and businesses providing critical infrastructure services. Considering the security level priorities, it became necessary to gradually harmonise the existing information technology infrastructures with these principles within the framework of the plan to be included in the Guide.

Türk Telekom carried out intensive studies covering the entire Company within the scope of compliance with the Presidency Digital Transformation Office Guide. In this context, the Company which identified the unfulfilled requirements according to the rating measure analysis in the guide by grouping all technology assets, assigned them to the teams in order to take the relevant actions and started a follow up process.

Database Activity Monitoring Product - DAM

Türk Telekom localised the foreign-origin DAM product, which is used for 24/7 monitoring, updating and recording of transactions carried out on databases, by making the necessary improvements. Thus, the Company added a new product to the local ecosystem, while also providing a significant cost advantage.

Revenue assurance activities

As part of its revenue assurance activities, Türk Telekom effectively and closely monitors invoice reconciliations, preventing any revenue losses. In this way, while the services offered to millions of subscribers are monitored, incompatible services provided to the subscribers are corrected, and significant revenue losses are prevented.

Extension of DDoS7+ service

The topology design of the L7 Anti-DDoS service was arranged for the use of all corporate metro ethernet and data centre customers, and the service was expanded.

Deployment of managed end device monitoring

Research shows that the vast majority of cyber-attacks originate from user devices. Türk Telekom deployed the end device security incident detection and intervention service for the detection and prevention of such cyber-attacks and offered it to large-scale institutions. Infrastructure installation and integration of the service have been completed.

Deployment of security test services

In 2021, cyber security infrastructure renewal activities performed for SIEM (Security Information and Event Management) infrastructure, mobile network security, mobile data centre security and e-mail security, DLP (Data Loss Prevention), SOAR, data classification and labelling, Ministry of National Education-Fatih project and data centres. In addition to these activities, Identity Authentication, Vulnerability Management and Anti-DDoS infrastructure improvement studies were also carried out during the year.

While DDoS attacks were mostly volume- and protocol-oriented in 2020, application-oriented attacks were in the majority in 2021, and Türk Telekom prevented the attacks with its security services. The number of DDoS attacks blocked in 2021 increased by 20% year on year, and the number of cyber security products, services and customers increased by 30%.

Cyber Security Idea Marathon

Türk Telekom launched the Cyber Security Idea Marathon with the theme of Next-Generation Identity and Access Management Solutions in cooperation with Bilişim Vadisi (Technology Development Zone) and the Turkey Open-Source Platform. The winners of the Cyber Security Ideas Marathon, which aims at the development of innovative cyber security solutions by young people and to reveal their talent in this field, won a total prize of TL 100 thousand.

Cyber Security B2B Event

Türk Telekom aims to reduce the country’s import volume in items such as hardware/software and license by supporting the domestic and national ecosystem, and to provide better service to its corporate customers with its domestic product and service portfolio within the scope of “Cyber Homeland”. At the Cyber Security B2B event, the Company listened and evaluated the solutions of companies in the domestic ecosystem.