Certification at the heart of Proximus NXT’s strategy

Certification at the heart of Proximus NXT’s strategy

Three years after obtaining its ISO 27001 certification, Proximus NXT has been recertified by Bureau Veritas, with an expanded scope now including cybersecurity services. The Information Security Management System supporting the procurement, operations, and operational supervision activities of cloud services, cybersecurity services, managed services, and outsourcing services provided by Proximus NXT S.A. to its customers complies with the requirements of this standard.

“This certification once again formally recognizes our operational capabilities as a managed cloud services provider. Our request to extend the scope to cybersecurity is a natural step: our customers need a trusted partner for IT outsourcing supporting their strategic activities, while adapting to regulatory changes and protecting themselves against the high risks of cyberattacks. Here, we demonstrate that security is integrated and managed by design and by default by our teams, following a risk-based approach. We are constantly striving for quality to satisfy our customers, and our recent recertification to the latest version of ISO 9001 also confirms this approach. This latest version notably includes risk analysis within our operational processes,” explains Guy Minella, Director Cloud & Telco Global Services.

“This recertification rewards the work of all our teams involved on a daily basis in the continuous improvement of our customers’ operational and security monitoring. Our approach to optimizing our security management system began well before obtaining this certification and will continue. It is a corporate culture that contributes to improving our processes, which is essential for better service quality for our customers,” adds Geoffrey Guldner, ISO 27001 Officer at Proximus NXT.

“The CyberSecurity Intelligence and Operations Center (CSIOC) of Proximus NXT is the cornerstone of this approach. From a security event monitoring tower, it has evolved into a cybersecurity operations control center, where our teams perform activities and offer them to customers as managed security services. The certification demonstrates that all our detection, alerting, and response processes are defined and executed with full awareness of the risks we may pose to our customers, and that these risks are appropriately managed to prevent any harm. It also demonstrates that our activities follow an internationally recognized framework, making the CSIOC a trusted security partner for our customers,” specifies Frédéric Hauss, Leader of the CSIOC at Proximus NXT.

This integrated cybersecurity approach includes preventive, defensive, detective, and reactive security services, combined with offensive security. It complements an already extensive portfolio of services covering strategy, risk management, governance, consulting, training, ethical hacking/pentesting, and Security Operations Center services.

For more information: https://www.proximusnxt.lu/fr/a-propos