•AiTE platform scans traffic at layer two to three, blocking threats without client-side software

•Network operators positioning cybersecurity as revenue service rather than cost centre



The fact

SK Telecom has published its first Information Security White Paper 2025, outlining the company's information security governance, security architecture and personal data protection framework. According to the operator, the report forms part of its efforts to strengthen transparency and rebuild customer trust following the cyber incident that prompted a company-wide review of its security practices.

The white paper sets out a five-year investment programme worth approximately 700 billion won to strengthen the company's security capabilities. According to SK Telecom, the programme includes wider adoption of Zero Trust architecture, AI-based threat detection and enhanced customer protection services. The report also describes how cybersecurity is being integrated into enterprise-wide management rather than being treated solely as an IT function.

SK Telecom said the publication marks the beginning of broader engagement with customers and stakeholders on its cybersecurity activities. Chief Information Security Officer Lee Jong-hyun said security must continuously evolve to respond to increasingly complex threats.

The assessment

Telecom operators are entering a new phase of cybersecurity governance. Security is no longer measured only by how well operators prevent attacks. Increasingly, customers, regulators and enterprise clients expect operators to demonstrate how they manage cyber risk, protect data and strengthen resilience. Transparency is becoming part of competitive positioning.

SK Telecom's response reflects this broader shift. Rather than limiting its efforts to technical upgrades, the company is publicly documenting its governance, investment priorities and long-term security strategy. The emphasis on Zero Trust and AI-assisted threat detection also mirrors wider changes across the telecom industry, where continuous verification is replacing traditional perimeter-based security models.

For BTW readers, the infrastructure signal is that telco operators are monetising their unique position in the stack. Network-level threat detection is a play that only operators with access to backbone and edge infrastructure can execute. If SK Telecom's AiTE gains traction, other national operators could follow—especially in markets where cybersecurity remains a cost centre rather than a billed service.

What to watch

Watch how SK Telecom executes its five-year security investment programme, particularly the deployment of Zero Trust architecture and AI-driven security capabilities. Also monitor whether other operators begin publishing comparable cybersecurity reports as transparency becomes an increasingly important measure of trust across the telecom industry.