Service security
Delivering secure services with confidence
At Nokia, we are committed to delivering secure services that protect our customers from potential cyber threats. By adhering to industry best practices and international standards such as ISO/IEC 27001, we safeguard our services from vulnerabilities.
Many of our services involve Nokia personnel accessing customer networks and processing confidential data. This makes security a top priority, given our customers' growing concerns about potential vulnerabilities. Just as we rely on our suppliers to protect our environment, our customers rely on us for secure and trustworthy services. Our commitment to secure services ensures our customers can rely on us to protect their data and operations.
Comprehensive protection
The foundation of our service security lies in the robust protection of Nokia’s corporate infrastructure. Beyond this foundation, we implement specialized security programs tailored to Nokia services, ensuring comprehensive protection through the following measures:
Proactive security: Built into every service
We integrate security requirements into the CREATE for Services process, validating the security of new services before launch. This ensures that security is considered from the outset, minimizing vulnerabilities and maximizing protection.
Meeting global security standards
Our security control baselines align with globally recognized standards, including ISO/IEC 27001 and the Cloud Control Matrix (CCM) of the Cloud Security Alliance (CSA). This ensures our services meet the highest international benchmar
Continuous risk and compliance management
We systematically manage risks, enhance security measures, and ensure compliance with regulatory requirements like the EU's Network and Information Security Directive (NIS 2) through an ISO/IEC 27001-based Information Security Management System (ISMS). This proactive approach minimizes our risk exposure and ensures ongoing compliance.
Comprehensive partner security management
Our security risk management extends to all partners delivering services on behalf of Nokia. This ensures consistent security practices across our entire service ecosystem.
Building trust through certification and audits
We maintain ISO/IEC 27001 certification and conduct regular internal and external audits to demonstrate our unwavering commitment to security and trustworthiness. Our security practices are independently verified.
Nokia's unwavering commitment to security at every stage ensures our services meet the highest standards, empowering our customers to operate with confidence in today’s digital landscape.