Turkcell Enhances Cybersecurity for Millions of Customers with CyberArk
Technology Category
- Cybersecurity & Privacy - Application Security
- Cybersecurity & Privacy - Endpoint Security
Applicable Industries
- National Security & Defense
- Telecommunications
Applicable Functions
- Quality Assurance
Use Cases
- Cybersecurity
- Tamper Detection
Services
- Cybersecurity Services
- System Integration
About The Customer
Turkcell is a digital operator headquartered in Turkey, offering a unique portfolio of digital services along with voice, messaging, data, and IPTV services on its mobile and fixed networks. Turkcell Group companies operate in four countries – Turkey, Ukraine, Belarus, and Northern Cyprus. The company also provides services in the techfin sector with Paycell, which provides payment services, and Financell, which offers financial services. Turkcell launched LTE services in its home country in 2016, offering up to 10 Gbps fiber internet speed with its FTTH services. The company has been listed on the NYSE and the BIST since July 2000 and is the only NYSE-listed company in Turkey.
The Challenge
Turkcell, a leading digital operator in Turkey, faced a significant challenge in protecting its 40 million customers, 300,000 network devices, and 40,000 employee and partner identities across Turkey, Ukraine, Belarus, and Northern Cyprus. As the largest telco in Turkey, Turkcell offers a wide range of services, making cybersecurity a critical business operation. The company has won several awards for its digital security products and plays a key role in the Turkish cybersecurity industry. However, the company's aggressive digital transformation path, which includes new digital services such as instant messaging, TV and music platforms, personal cloud services, search engine, and email services, increased its attack space. The COVID-19 pandemic further complicated matters as most staff began to work remotely, potentially exposing Turkcell to new, unforeseen risks. A risk assessment initiative highlighted a potential vulnerability in Windows servers, prompting the company to seek a robust security solution.
The Solution
To address its cybersecurity challenges, Turkcell partnered with CyberArk, a market-leading security solutions provider. Turkcell adopted CyberArk Privileged Access Manager Self Hosted and CyberArk Endpoint Privilege Manager, expanding the CyberArk platform as the business grew. Currently, Turkcell manages more than 70,000 accounts using CyberArk and protects over 10,000 endpoints with CyberArk Endpoint Privilege Manager, focusing on high-risk high-impact teams like developers and system admins. The company also uses CyberArk Secrets Manager to protect machine identities and eliminate hardcoding passwords. To resolve the security risk on Windows servers, Turkcell used CyberArk to limit local admin rights and store passwords in CyberArk vault systems. This approach significantly limited attackers' options to move laterally from local applications to critical systems and eliminated the need for users to write down or store passwords on computers.
Operational Impact
Quantitative Benefit
Case Study missing?
Start adding your own!
Register with your work email and create a new case study profile for your business.
Related Case Studies.
Case Study
Vodafone Hosted On AWS
Vodafone found that traffic for the applications peak during the four-month period when the international cricket season is at its height in Australia. During the 2011/2012 cricket season, 700,000 consumers downloaded the Cricket Live Australia application. Vodafone needed to be able to meet customer demand, but didn’t want to invest in additional resources that would be underutilized during cricket’s off-season.
Case Study
SKT, Construction of Smart Office Environment
SK T-Tower is the headquarters of SK Telecom. Inside the building, different types of mobile devices, such as laptops, smartphones and tablets, are in use, and with the increase in WLAN traffic and the use of quality multimedia data, the volume of wireless data sees an explosive growth. Users want limitless Internet access in various places in addition to designated areas.
Case Study
Data Capture for Afghanistan Forces
Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.
