Mr. Cristian Pațachia-Sultănoiu is an experienced manager with over 15 years of experience in telecom industry, covering an extensive spectrum of technology, business development and innovation management He received a BSc degree in Electronics and Telecommunications at the Satellite and Mobile Communications department of the Politehnica University Bucharest in 2000 and also his MSc degree in Optical Fiber, Fixed and Mobile Radio Communications at the Politehnica University of Bucharest in 2001.
Mr. Pațachia-Sultănoiu also has an Executive MBA in Finance from University of Sheffield and has been working for Orange Romania since 2000, currently managing the Development & Innovation team of the Engineering department. He is currently coordinating several research projects in the following areas : cybersecurity, smart city, Wi-Fi offload for cellular data networks, monetisation of network’s APIs, mobile cloud computing and IoT/M2M. In addition, Mr. Pațachia-Sultănoiu is coordinating Orange Educational Program, Innovation Labs and several Horizon 2020 research and innovation
projects on various topics such as next generation emergency services and critical infrastructure security.
Practical tips and tricks for securing your organization
(Paper delivered with Mădălin Dumitru)
Data security risks are more present than ever. Companies should be worried as no one is safe online. Less than a quarter of the companies interviewed by Orange believe they are exposed to cyber security risks. 8% of customers don’t even know if they were targeted by a cyber-attack. 229 days is the average time spent by attackers in a network, before being detected. According to CERT-R0, 67% of the victims were previously informed by external entities of their organization. With the acceleration of enterprise mobility, the adoption of multiple devices and increasingly demanding end-users, IT security has become very complex.
You’re facing a new generation of ICT security challenges, social media, mobile devices at the workplace and cloud computing, all carrying with them associated risks. As your organization grows, you need your network and information security systems to grow with you. Prevention techniques sometimes fail, therefore tools, processes, detection procedures and response teams should be added and this is the perimeter where Orange introduced the Business Internet Security, a fully managed security service. The goal is to reduce the time until detecting the incidents, reduce the time for investigation and reduce the time for incident’s correction.
The Business Internet Security enabler offers a choice of integrated, managed and cloud-based security solutions to provide the protection your data, network and customers’ needs. Along with a selected group of cyber security partners, Orange aims to offer organizations fully managed cyber security solutions. We established an approach through which we periodically test our clients’ systems for security breaches, offer the best solutions towards remediating the issues and recommendations for long term maintenance of the security level, monitor our clients’ systems between the periodic penetration tests, and identify and alert any security issues that might occur in between the periodical penetration tests through the Security Operation Center.
Any organization that has a network connected to the Internet or provides an online service should consider subjecting it to a penetration test. Our users’ trust is something we never take for granted here at Orange. In order to earn and keep that trust we are always working to improve the security of our services.
Some vulnerabilities, however, can be very hard to track down and it never hurts to have more eyes. Therefore, we introduced Orange Bug Bounty program to better engage with security researchers’ community. The idea is simple: ethical hackers and security researchers find and report vulnerabilities through our responsible disclosure process.
Orange promotes Bug Bounty initiatives in order to test and improve the accuracy of its cybersecurity solutions, developed to protect the Internet access for organizations.