NCS Compliance: Does the operator have a formal incident response agreement with the National CIRT/CERT?

ISMS Certification: Has the operator implemented itu-t X.1051 (ISO 27001 for Telecom) controls?

Workforce Capacity: Are the security engineers certified in the the itu-d Cybersecurity Curriculum or equivalent?

Legal Compliance: Are the Lawful Interception (LI) gateways secured and isolated from the public internet?

BGP Security: Are RPKI and BGP route-filtering implemented at the international gateway?

DDoS Mitigation: Is there an automated "Scrubbing Center" or DDoS-cleaning capacity?

Signaling Hardening: Are the SS7/Diameter firewalls configured with the latest X.1031 vulnerability signatures?

Physical Protection: Are the Undersea Cable landing stations and Satellite Gateways physically and electronically monitored?

SBA Authorization: Is mandatory OAuth2/SEPP authentication active for all cross-domain Service Based Architecture queries?

Slice Isolation: Have the Network Slice Selection Function (NSSF) configurations been audited for cross-slice leakage?

SUPI/SUCI Privacy: Is the network configured to always use SUCI (Subscription Concealed Identifier) instead of the plain IMSI?

PQC Roadmap: Does the operator have a published plan for the Post-Quantum Cryptography (PQC) transition of the control plane?

2G/3G Fallback: Is the network configured to reject unauthenticated 2G/SS7 fallback requests?

High-Impact CVEs: Are all high-impact 2024-2026 AMF/UPF software vulnerabilities patched according to vendor advisories?

GTP-U Integrity: Is the User Plane (GTP-U) traffic monitored for header manipulation and IP spoofing?