Security

How can we guarantee the protection of the digital identity and personal data as part of an increasingly multi-channel model?

Scenario

The opportunities for economic development associated with the internet also bring new security challenges. The digital opening to international markets makes IT systems more vulnerable to attacks by criminals, hackers or terrorists seeking to disrupt them to illicitly obtain personal or business information.

Developing new capabilities and instruments to improve Italy’s cybersecurity is a national challenge of paramount importance for the sake and security of individuals, companies, and the civil service.

Several countries are implementing national strategic plans that bring together the public and the private sector, as well as the research community, to bolster the defences of the “highly sensitive” infrastructure of governmental organisations, companies and individuals against cyber attacks. The global IT security market is expected to grow at an average annual rate of 7.9% from today to 2019 2.

By the numbers 3

In 2015

24.2% of Italians say they lost time and/or data because of computer viruses

5.9% of Italians report privacy breaches

54.3% of Italians say they did not conduct any activity online due to security concerns, specifically:

31.5% did not disclose personal information on social networks or professional platforms;

19.2% did not connect to the internet through a wireless connection anywhere but home

25.1% did not download software, music, videos, games, or other files, nor bought or ordered goods

23.8% did not conduct any banking transactions or manage their bank account online



In recent years, the risk landscape has changed as computer criminals have considerably stepped up their efforts not only in terms of quantity, but also quality.

What can we do? In Italy, only 42.9% of companies connected to the internet have formal ICT security procedures in place. However, Italy ranks fourth in Europe on this measure, beating the European average by nearly 11 percentage points (32% 4).

Italian companies with an ICT security policy by sector:

79.1%
Telecoms

69.2%
IT

68.0%
Publishing

18.0%
Catering

19.8%
Postal and delivery services

Our answers

Network security

Currently, no product or software can make a system completely secure, therefore preventing all cyber attacks is all but impossible. However, we can deploy a set of tools and skills that, by combining different approaches and technologies, allow reducing the time it takes to identify attacks and stop them in their tracks.

Within the Group, cyber attack prevention and mitigation are delegated to dedicated units, such as:

Security Lab

it assesses cybersecurity threats, analyses new risk scenarios, as well as identifies and develops innovative solutions and tools and tests them in the lab to provide remedies and approaches to handle or prevent potential risk situations, associated for instance with the adoption of new technology. The Security Lab also maintains international relationships with standard-setting organisations, the open-source community, academia, software vendors, and other players. In addition, it contributes to the European Union’s Cyber Security research programmes.

Security Operation Center (SOC)

this is the actual monitoring centre that handles security alarms coming from the telecommunication networks and Data Centres hosting TIM’s applications as well as those of our customers. The SOC uses state-of-the-art tools and, most importantly, is comprised of IT security professionals with several years of experience in managing and preventing IT incidents.

2015 by the numbers

Nearly 200

professionals

7,735

incidents handled
(+32% vs. 2014)

124 Gbps

worth of distributed denial of service attacks (116 gbps in 2014)

The new rights of the digital age
A prerequisite for fully exercising our digital freedoms in the internet age is being aware that the data we share online is a crucial part of our identity, is invaluable, and must not be recklessly disclosed.

Public institutions will have to increasingly focus on protecting our digital identity and, more generally, online security, making these priorities a reality at the national and European level. But how companies address these issues is just as key.
TIM’s broad notion of “human rights” encompasses not only fundamental human rights, but also those inherent to the information society, such as the right to access information, freedom of speech (especially online), and privacy and online security-all important concerns for a TLC company.

In 2015, we adopted a Human Rights Policy to further reaffirm our commitment to making the respect of human rights a prerequisite for all the company’s employees.

Global Cybersecurity Agenda

We contribute to updating the Child Online Protection guidelines of the ITU (International Telecommunication Union) for the broadcasting, internet and mobile industries.

GSMA - Mobile Alliance
against Child Sexual Abuse Content

We work together with the GSM Association, and specifically with the GSMA – Mobile Alliance against Child Sexual Abuse Content, on all technological and communication initiatives to protect children in the mobile industry.

Global Trends in Online Safety:
Creating a National Framework

We were the first in Italy to join the FOSI (Family Online Safety Institute). In September 2015, we were among the organisers of the conference “Global Trends in Online Safety: Creating a National Framework”, which allowed to share international best practices with high-profile stakeholders, including the European Commission.

Education on internet security
and use

The growing use of the internet, especially among the young, implies a greater exposure to risks such as “cyberbullying”, i.e. bullying that takes place online.

In Italy, the attention to this problem has grown considerably. The Ministry of Education, University and Research has disseminated among all Italian schools the new “Guidelines on anti-bullying and cyberbullying”, and said that in 2015-2016 it will continue acting as coordinator of Italy’s Safer Internet Centre (SIC), which consists of a National Consortium.

Even the Italian National Police combats cyberbullying with public awareness campaigns and projects to help promote online best practices.

Cyberbullying by the numbers

As soon as in 2014, Istat 5 reported the prevalence
of cyberbullying among the young:

22.2%

of 11-17-year-olds have been bullied using new technology over the last year

7.1%

of 11-17-year-old girls have been repeatedly harassed online (compared to 4.6% among boys)

~7%

of 11-13-year-olds say they have been bullied online at least once a month. the proportion declines to 5.2% if the victim is aged 14-17 years.

At TIM, we consider the digital education of the young as crucial, and therefore we have prepared initiatives that leverage their passions, such as sports or technology.

#TIMgirlsHackathon A nearly 7-hour marathon intended to introduce girls to coding and help bridge the technological skills gap between boys and girls.
The challenge is creating an App on cyberbullying and the safe use of the internet in just one day.
by the numbers
2 editions
2015 and 2016
700
girls
70
schools
11
cities
Junior TIM Cup A football tournament under 14 promoted by CSI - Italian Sports Center, Lega Serie A and TIM and starring ambassadors of the cities whose teams are in Serie A TIM.
2012-2016 by the numbers
2,953
parish centres involved
~20,000
matches
42,000
children involved
~50
meetings with the champion
Volley TIM Cup A volleyball tournament dedicated to teenagers to promote sports culture and the digital being, against all forms of cyberbullying.
2014-2016 by the numbers
210
parish centres involved
36
meetings with serie A1 players in sports arenas
6,000
students involved
16
meetings with students in schools
5,600
young volleyball players involved

A short and intense project conducted between October and November 2015 featuring ten Web Stars as ambassadors for the 10 rules for responsible internet use by children, which were developed together with the Italian National Police.

Each Web Star interpreted one rule by posting an image on his or her social channel, inviting viewers to share it. The website dedicated to the initiative includes also a section for scientific discussion: ten real-life cases, each referring to one of the rules, commented by the experts of the Italian Postal and Communication Police Service and Milan’s Minotauro Institute.

14 mln reach

~ 11,000 shares

178,000 likes on FB

> 72,000 page views

Sources


  1. “How can we secure our data?”, Daniel Wellers  World Economic Forum, 2015
  2. Forecast Analysis: Information Security, Worldwide, 3Q15 Update”, Gartner, January 2016
  3. Citizens, enterprises and the ICTs”, Istat December 2015
  4. Citizens, enterprises and the ICTs”, Istat December 2015
  5. Bullying in Italy: offensive and violent behaviour among early teens”, Istat 2014