Latest news with #SecNumCloud
Business Wire
3 days ago
- Business
- Business Wire
Strengthening digital trust: Orange Business receives SecNumCloud qualification, Europe's strictest security standard, for Cloud Avenue SecNum
PARIS--(BUSINESS WIRE)--In today's world, where security and sovereignty are more important than ever before, Orange Business has obtained the security visa from the French Cybersecurity Agency (ANSSI) for the SecNumCloud qualification of its Cloud Avenue SecNum platform. This highest level of recognition in Europe certifies that our dedicated and private Infrastructure-as-a-Service (IaaS) environments meet the strictest security and transparency standards. With this achievement, our customers can confidently deploy their critical services on a powerful, secure, and trusted cloud platform. Aligned with the French state 'cloud doctrine', the platform helps our customers meet the strictest French and European standards. Cloud Avenue SecNum: a trusted, sovereign platform At the heart of Orange Business' strategy is a reliable cloud platform that complies with security and regulatory requirements across Europe. Hosted in our sustainable data center in Grenoble, France, and managed by our dedicated French teams, Cloud Avenue SecNum ensures data sovereignty. Designed with a modular architecture and an 'as-a-service' approach, the platform empowers users to increase their autonomy and technological control. It comes with built-in security features, such as encryption, key management, network isolation, and access control, while also providing comprehensive traceability of actions and ensuring physical, environmental, and operational security. Aligned with the French state 'cloud doctrine', the platform helps our customers meet the strictest French and European standards. Cloud Avenue: a range of cloud solutions for diverse organizational needs. This solution is part of our comprehensive Cloud Avenue portfolio, developed and managed by Orange Business. It offers complete flexibility through modular technology. Our solutions are designed to meet the needs of all organizations, especially those in sensitive sectors like industry, banking, healthcare, defense, and public services. With infrastructure across Europe (France, Germany, Norway and Sweden), Cloud Avenue ensures full data control and strict compliance with regulations. According to Frederic Beon, Director of Information Systems and Digital Organization for the Gers Department, a region in Southwest France, "The platform provides us with the necessary security and compliance to meet regulations such as the French state 'Cloud Doctrine', while also enabling us to gain autonomy with our testing and development. Additionally, Cloud Avenue SecNum allows us to significantly reduce time spent certifying our user online services in accordance with the General Security Referential (RGS), thereby optimizing our operational efficiency." 'At Orange Business, our mission is to deliver unwavering trust and control over cloud infrastructures for our customers. SecNumCloud qualification demonstrates our commitment to sovereignty and confirms that our Cloud Avenue SecNum solution adheres to the strictest security and compliance standards. This validation reinforces our dedication toward our customers who are facing the complexities of an ever-changing digital landscape,' says Aliette Mousnier-Lompré, CEO of Orange Business. SecNumCloud: An essential qualification to enhance security and trust The SecNumCloud qualification, granted by ANSSI, confirms that infrastructure meets Europe's highest security standards. This ensures strong protection for sensitive data, such as intellectual property or artificial intelligence information. Going through this rigorous process helps reduce legal and technical risks and gives users greater confidence in cloud solutions. In addition, ANSSI security visas, awarded after detailed evaluations by authorized labs, verify that these solutions are reliable and compliant. These assessments include penetration tests and thorough analyses to identify security measures that are truly trustworthy. This security visa serves as a badge of credibility for organizations that adopt these qualified solutions. About Orange Business Orange Business, the enterprise division of the Orange Group, is a leading network and digital integrator, supporting customers to create positive impact and digital business. The combined strength of its next-generation connectivity, cloud, and cybersecurity expertise, platforms, and partners provides the foundation for enterprises around the world. With 30,000 employees across 65 countries, Orange Business enables its customers' transformations by orchestrating end-to-end secured digital infrastructure and focusing on the employee, customer, and operational experience. More than 30,000 B-to-B customers put their trust in Orange Business globally. Orange is one of the world's leading telecommunications operators with revenues of 40.3 billion euros in 2024 and 291 million customers worldwide at 31 December 2024. In February 2023, the Group presented its strategic plan "Lead the Future", built on a new business model and guided by responsibility and efficiency. "Lead the Future" capitalizes on network excellence to reinforce Orange's leadership in service quality. Orange is listed on the Euronext Paris (ORA). For more information: or follow us on LinkedIn and on X: @orangebusiness Orange and any other Orange product or service names included in this material are trademarks of Orange or Orange Brand Services Limited.
Euronews
24-06-2025
- Business
- Euronews
Industry calls to safeguard independence of EU cybersecurity agency
Telecom operators, trade unions and industry groups have called for the EU's cyber agency ENISA to steer away from political interference and remain independent in response to a consultation on the European Commission's review of existing cybersecurity rules. In May, the Commission began gathering feedback on a revision to the bloc's 2019 Cybersecurity Act (CSA), which is being revamped in line with efforts to simplify existing rules. The proposal aimed to give the Athens-based ENISA a bigger mandate, including over the drafting of cybersecurity certification schemes, through which companies can demonstrate that their ICT solutions include the right level of cybersecurity protection for the EU market. Since 2019, the Commission requested three of these voluntary certification schemes: on baseline ICT products, 5G and cloud services, of which only the first has yet been adopted. The certification for cloud services (EUCS) turned into a political battle over sovereignty requirements. France has led resistance and wants to be sure that it can continue to use its own scheme – SecNum Cloud – after the adoption of EUCS. Tech industry association CCIA said ENISA's role in the certification scheme development 'should be explicitly grounded in technical independence, allowing it to make non-political decisions that reflect industry realities and cybersecurity best practices.' This was echoed by US tech company Amazon which said that the voluntary certification frameworks should be 'based purely on technical criteria'. 'We strongly believe that introducing non-technical factors could undermine the framework's effectiveness and create unnecessary barriers to innovation,' it added. Global consumer electronics company Lenovo, also warned against introducing non-technical criteria 'such as vendor nationality, ownership, or headquarters location—in cybersecurity risk assessments or certification schemes.' 'These measures risk undermining EU principles of non-discrimination, market access, fair competition, and proportionality, while offering little benefit to actual cybersecurity outcomes,' it said. There have been calls and plans from the Commission to increase the bloc's independence of suppliers from outside the EU. In the upcoming Cloud and AI Development Act, for example, the Commission plans to strengthen the EU's position in the industry. In the European Parliament lawmakers are also calling for measures to boost technological sovereignty and guarantee the bloc's independence and security by protecting its strategic infrastructure and reducing dependence on non-European technology providers. ENISA mandate The Commission began seeking feedback from industry and national governments on the functioning and scope of work of ENISA last year, as reported, in a bid to modify the agency's mandate and financial support. There seems to be support to increase its funding among the participants to the consultation. For example, Eco, a German association for the internet industry, said that the agency hadn't grown in terms of staff despite its expanded remit. 'Given the current geopolitical security challenges and the scale of global cyber threats, its financial resources remain limited compared to other EU bodies. [...] It is important to boost ENISA's role as the independent expert on European Cybersecurity. In order to operate independently and attract necessary resources, staff, and experts to the benefit of its mandate, ENISA has to leverage its public standing among the global community,' the contribution said. Henna Virkkunen, the EU Commissioner for technology, said earlier this year that she will carry out a so-called Digital Fitness Check – expected before the end of 2025 -- which will assess whether all existing tech rules are burdensome to companies, and identify areas for simplification. The CSA is expected to be part of that.
