MCF Group improves the data centre team’s security awareness with a dedicated cybersecurity hygiene training

CYBERS 25.11.2020

The changing legal landscape is forcing many companies to review their cloud strategy from “Let’s put everything into AWS or Azure” to “Let’s use a local cloud provider or create our private cloud”.

The elephant in the room being Schrem’s II ruling, which effectively invalidated Privacy shield between the EU and USA. That in return led to a situation where US-based companies forced to provide access to customer data even by authorities are in breach European General Data Protection Regulation (GDPR).

This is a known fact and if a company (controller) chooses to store personal data in such a cloud (processor), it de-facto knowingly puts it at risk (of illegal exposure to US authorities), leading to a potential GDPR-fine.

Which is why it made a lot of sense for MCF Group to build a new data centre outside of Tallinn based on highest quality and reliability standards. MCF stands for Mission Critical Facilities and the project is almost complete.

Citing MCF Group’s CEO, Kert Evert: “At present, there is a high demand for well-functioning e-services in Estonia and across the globe. According to the original construction schedule we had planned to organize the tenders for large technological equipment, like generators, power and cooling systems, this summer. However, we decided to move ahead and start the whole process right now, so as to get the equipment delivered sooner and the data centre up and running as fast as possible.”

Emphasis on security is very strong, which is why MCF Group started investing in the security of the project and team even before DC opened its doors.

“Our team is critical to the success of this entire project. So, just as we pay very close attention to every other aspect of security, we want to make sure that our colleagues have superior cybersecurity hygiene. It is incredibly relevant to both their professional lives, but also – home. We wanted the team to be able to protect their loved ones and home environments. To ensure that, we partnered up with CYBERS who developed and delivered a custom security training based on our realities. It is also in line with our dedication to quality and security standards, such as ISO27001 and EN50600,” explains Aivar Karu, CIO of MCF Group.

The short and intensive training was delivered to the entire team in Autumn of 2020. It featured lots of examples, tips and a lively discussion.

“It was great to see that MCF team really cares about security and wants to learn to be even better at it. For me, as a trainer, it’s incredibly important to see that people acquire the knowledge and not just sit through the training forgetting everything on the next day. We went through a lot of topics like ransomware, need for encryption and even cloud security. It was great to see that MCF team immediately brought up relevant examples, demonstrating that they really understood what was going on,” comments Helena Jürgenson, project manager and security trainer at CYBERS.

If you care about the security of your organization and team – please contact us to get a free preliminary evaluation.





Latest blog posts


Cybersecurity as part of defense measures against modern war fighting capabilities

CYBERS in cooperation with Recorded Future will share insights on the ongoing cyber crisis which started several months before the military invasion. This article provides an overview of the current situation, as well as the recommended emergency actions that should be taken by organizations to withstand this cyber conflict.

Keep reading

Testing and identifying the value of your next cybersecurity solution

The security world is changing rapidly and we are slowly reaching another huge milestone. Not a very happy one though: manual security operations are no longer sufficient. This is a little bit painful to admit but the fact remains: if you rely on the manual labour of CTOs, CISOs and their teams to react to an incident, then you are in for a very rude awakening.

Keep reading

Are you at risk from the security vulnerability found in the Java-based Apache Log4j logging feature?

A security hole was discovered in the Java-based Log4j logging feature, affecting millions of businesses, government agencies, and cloud services using this popular Apache library. Are you at risk?

Keep reading