GDT helps telecom leader protect infrastructure against Salt Typhoon-style exploits
Summary
GDT helped a global telecommunications leader accelerate network modernization and reduce security risk from Salt Typhoon-style exploits by replacing aging infrastructure and upgrading firmware at scale. The result was faster deployments, improved security, minimized downtime, and reduced strain on internal teams.
Customer overview
Our client is a telecommunications leader delivering innovative connectivity solutions to millions of customers worldwide. GDT has supported this client for nearly a decade, building a trusted relationship across many initiatives.
The challenge
As a telecommunications provider, our client operates at the center of critical infrastructure, making it a target of advanced persistent threats such as Salt Typhoon. Networks hold vast amounts of highly sensitive data and can serve as strategic access points for bad actors through outdated systems and unpatched vulnerabilities.
Our client had been managing end-of-life/end-of-service (EOL/EOS) replacements and firmware upgrades internally, but wanted to move at a faster pace. Internal teams also struggled with the capacity and specialized expertise to execute at the required scale and speed.
Key challenges included:
- Work executed in a live production environment with strict downtime constraints
- Frequent change freezes tied to major business events such as product launches and large-scale operations
- A large amount of investigative work needed to identify infrastructure dependencies and usage
- Visibility challenges into device usage and ownership across the network
- Rigorous and extensive testing and lab validation requirements before deployment
- Coordination between on-site teams and remote engineers across multiple locations
The solution: EOL/EOS device replacement, IOS upgrades, and vulnerability remediation
GDT ran an ongoing EOL/EOS device replacement program to identify and eliminate unsupported and aging infrastructure. Our engineers planned and executed replacements across the distributed network within live production environments. This effort required accommodating strict maintenance windows and frequent change freezes.
GDT also led a coordinated IOS and firmware upgrade initiative to bring all in-scope devices to a secure, supported baseline before EOL/EOS cutovers. Our experts analyzed the network to identify devices running outdated or vulnerable code and executed upgrades during defined maintenance windows across multiple locations.
Key elements of the GDT solution:
- Pre-staging and validation of equipment at GDT integration facilities
- On-site deployment and remote engineering support
- Network analysis and risk identification
- Coordinated execution across distributed environments
- End-to-end change management and stakeholder coordination
The approach
GDT’s staging-led delivery model played a critical role in the program’s success. Devices were kitted, asset-tagged, pre-configured, labeled, validated for DOA/quality, and hardened at GDT’s staging facilities before shipping to the site. On-site resources handled rack, stack, and cabling while remote engineers managed configuration and cutovers, often within four-hour maintenance windows.
Investing in upfront staging, validation, and change management enabled GDT to support the client in achieving outcomes quickly, efficiently, and securely without risking operations.
Schedule an assessment
The results
By executing both programs in parallel and managing sequencing between them, GDT helped the customer reduce its security exposure and accelerate modernization across a nationwide, distributed environment. Our solution enabled:
Replacement of more than 1,000 EOL devices annually
Reduced security exposure and a smaller attack surface through remediation of known vulnerabilities
Faster network modernization with scalable deployments and minimized downtime
Improved cost and operational efficiency through device compression and consolidation
Stronger security posture with consistent patching and firmware updates
Increased confidence in network stability during critical operations
Reduced burden on internal teams, freeing capacity for higher-value work
Elevate your security posture with GDT
GDT helps enterprises proactively manage infrastructure risk through a holistic approach that combines advisory, architecture, and professional services. From zero-trust network and secure access design to vulnerability remediation and lifecycle/EOL programs, GDT hardens critical infrastructure at carrier scale while minimizing business disruption. Learn more about GDT cybersecurity services at https://gdt.com/capabilities/security/.
You might also like:
