Telefónica has introduced a managed cybersecurity service in Spain that is designed for organizations operating between 150 and 1,000 devices. Delivered through its Telefónica Tech business unit, the offering focuses on continuous protection against cyber threats across corporate environments. The service combines the CrowdStrike Falcon platform with Telefónica's network expertise and the operational capabilities of its Security Operations Centers to provide unified security management.
🔑 Key Highlights
- Telefónica launches managed cybersecurity service in Spain
- Service targets organizations with 150 to 1,000 devices
- Three service tiers include Essential, Advanced, and Premium
- CrowdStrike Falcon platform powers AI-driven threat detection
- Telefónica SOCs investigate and respond to security incidents
The managed MxDR service protects multiple areas of an organization's technology environment, including workstations, servers, identities, cloud environments, email systems, and networks. Telefónica continuously monitors customer systems while analysts from its global Security Operations Centers review detected threats. The Falcon platform supports these operations with real-time analysis and AI-powered automation, helping analysts improve visibility, accelerate investigations, and increase operational efficiency before responding to and containing identified incidents.
The service is available through three subscription levels—Essential, Advanced, and Premium. Rather than simply notifying customers when suspicious activity is detected, Telefónica's security teams investigate the origin and scope of each incident before taking action. Customers either receive confirmation that the issue has already been addressed by specialists or receive guidance to resolve the situation quickly, allowing them to maintain business operations without managing complex cybersecurity processes internally.
The new service also aligns with European regulatory requirements, including NIS2 and DORA, by supporting security measures, incident handling, and operational resilience. Telefónica positions the offering as a way to help organizations strengthen business continuity while reducing the need to build dedicated security operations teams or invest in specialized cybersecurity technologies.
Telefónica said the service addresses the cybersecurity needs of mid-market organizations that often lack their own Security Operations Centers and dedicated security specialists. The company also highlighted data from Spain's National Cybersecurity Institute showing that more than 122,000 cybersecurity incidents were detected during 2025, representing a 26% increase from 2024, with malware, including ransomware, identified as the most common threat category.
📊 What This Means (Our Analysis)
The launch reflects a shift toward managed cybersecurity services that combine AI-powered detection with expert-led operations instead of relying solely on automated alerts. By integrating continuous monitoring, investigation, and response into a single service, the offering simplifies cybersecurity management for organizations that may not have dedicated internal security resources.
The service also demonstrates how operational expertise and AI technologies can work together to strengthen cyber resilience while supporting regulatory compliance. Combining advanced detection capabilities with human analysis creates a practical security model focused on maintaining business continuity rather than simply identifying potential threats.
📌 Our Take: Helping organizations respond to cyber threats more efficiently will remain central as enterprise technology environments continue to expand.