Framework for Improving Cybersecurity in Cloud based VoIP provider
Benny Thomas, Alan (2025-06-12)
Framework for Improving Cybersecurity in Cloud based VoIP provider
(12.06.2025)
Julkaisu on tekijänoikeussäännösten alainen. Teosta voi lukea ja tulostaa henkilökohtaista käyttöä varten. Käyttö kaupallisiin tarkoituksiin on kielletty.
suljettu
Julkaisun pysyvä osoite on:
https://urn.fi/URN:NBN:fi-fe2025061669914
https://urn.fi/URN:NBN:fi-fe2025061669914
Tiivistelmä
Cloud communication services such as voice calling, video conferencing, and messaging have become vital to both individuals and businesses. As the reliance on cloud-based platforms increases, so does the exposure to cybersecurity threats, including data breaches, brute force attacks, and insider threats. This thesis focuses on examining the current security posture of Moitele, a cloud communication company based in Turku, Finland, with the aim of identifying existing gaps and proposing a framework to enhance its security infrastructure.
To achieve this, the study adopts a single case study approach focused on qualitative insights where a one to one interview was conducted with the CEO where the conversations happened where about understanding and getting a first hand knowledge of security practices, challenges, and future strategies. Instead of formal thematic analysis, the interview responses are presented as a straightforward question and answer format, reflecting the limited data available.
The findings from the interview have showed that the Moitele’s security implementation strongly rely on Multi-Factor Authentication (MFA) and data encryption and there is limited awareness of the latest security norms such as Zero Trust principles, AI/ML integration, enhanced incident response, and ongoing employee awareness programs. During the interview, the company also values the latest technologies such as blockchain and automation which they have not yet been adopted yet but may be in the future.
Based on this collected information, the thesis proposes a tailored security framework focusing on Zero Trust principles, AI/ML integration, enhanced incident response, and ongoing employee awareness programs. Even though the results are based on one company, they give useful advice to other small to midsized cloud communication companies who have similar security problems.
To achieve this, the study adopts a single case study approach focused on qualitative insights where a one to one interview was conducted with the CEO where the conversations happened where about understanding and getting a first hand knowledge of security practices, challenges, and future strategies. Instead of formal thematic analysis, the interview responses are presented as a straightforward question and answer format, reflecting the limited data available.
The findings from the interview have showed that the Moitele’s security implementation strongly rely on Multi-Factor Authentication (MFA) and data encryption and there is limited awareness of the latest security norms such as Zero Trust principles, AI/ML integration, enhanced incident response, and ongoing employee awareness programs. During the interview, the company also values the latest technologies such as blockchain and automation which they have not yet been adopted yet but may be in the future.
Based on this collected information, the thesis proposes a tailored security framework focusing on Zero Trust principles, AI/ML integration, enhanced incident response, and ongoing employee awareness programs. Even though the results are based on one company, they give useful advice to other small to midsized cloud communication companies who have similar security problems.