TelcoNews UK - Telecommunications news for ICT decision-makers
United Kingdom

Guides

#
5g & beyond
#
internet of things
#
software-defined networking
#
space technologies
#
unified communications

Search

Secure server room firewall network cables multifactor auth taiwan architecture
#
Firewalls
#
DevOps
#
Network Security

Zyxel advances Secure by Design for global SMB networking security

Thu, 10th Jul 2025
Author image
By Catherine Knowles, Journalist

Zyxel Networks has announced details of its progress in implementing Secure by Design principles across its products and services for small and medium-sized business (SMB) networking globally.

The company has adopted the Secure by Design Pledge from the Cybersecurity and Infrastructure Security Agency (CISA), which is focused on integrating security from the earliest stages of product development. This initiative encourages manufacturers to build security into their products by default and to improve transparency for users.

Zyxel Networks has become the first company in Taiwan and one of the earliest in the global SMB networking sector to take the CISA pledge. The move aims to demonstrate a proactive approach to cybersecurity within the business's product portfolio and operations.

Key security measures

The company highlighted several key steps it has taken to align with the Secure by Design goals, particularly across its Nebula cloud-managed product line, which includes firewalls, routers, switches, and access points.

The first step covers multi-factor authentication (MFA). Zyxel Networks stated that all Nebula cloud-managed devices support MFA. Notably, it became the first vendor globally to offer MFA for wireless access through its Secure WiFi feature, allowing administrators to enforce secure access for remote access point users. For firewalls, MFA is available for both administrative logins and remote VPN users, and is offered via email-based verification or by integrating with Microsoft and Google accounts.

On password security, the company reported that devices shipped from the factory are now supplied with random, unique passwords that must be changed during the initial setup. This, it said, ensures improved security from the outset. When creating a Nebula cloud-managed network, users are also required to generate strong credentials upon first login.

To reduce vulnerabilities, Zyxel Networks has adopted secure coding and development practices, such as following the OWASP Top 10 guidelines, employing static code and firmware analysis tools like Checkmarx, and using advanced techniques including automated combinatorial testing (ACTS). The business also commissions independent third-party penetration testers to help identify and resolve potential security issues.

Zyxel Networks underscored its track record for timely security patches by referencing its role as a CVE Numbering Authority (CNA) since 2021. According to the company, its average Mean Time to Remediate (MTTR) for vulnerabilities has remained in line with industry benchmarks over the past five years, with investments made towards maintaining a fast and coordinated response process.

The company has established a comprehensive vulnerability disclosure policy (VDP), offering public guidelines and reporting channels. Zyxel Networks notes that this transparency and consistency in vulnerability reporting has resulted in "the highest level of CNA acceptance, which is unmatched by any other SMB networking brands to date."

Network logging and incident response

Within its Nebula cloud-managed range, Zyxel Networks has ensured that all products now include between seven and thirty days of detailed network logging, with security insights delivered via SecuReporter, a cloud-based analytics platform providing a centralised perspective on network activity and security threats. For firewalls and security routers, access and operational logs are kept for up to 12 months, supporting comprehensive audit and incident-response capabilities.

"We believe that security must be built in, not bolted on," said Gary Chen, ANZ Regional Head at Zyxel Networks. "Our commitment to Secure by Design helps us protect our customers and partners in a fast-evolving threat landscape. It contributes to a healthier IT ecosystem, and transparency in vulnerability reporting is a hallmark of responsible, modern security practice. Our approach is grounded in openness, honesty and long-term trust, which is fully aligned with CISA's vision and, more importantly, our customers' expectations."

Zyxel Networks stated that these measures are intended to deliver on customer expectations for product transparency and reliable security. The application of the Secure by Design pledge to its product portfolio continues as part of ongoing cybersecurity improvements for the SMB networking sector.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X
Related stories
SUSE launches EU-based support to meet digital sovereignty needs
Zoom debuts AI features for business workflows across apps
UK schools to benefit as GBP £25 million boosts digital networks
Juniper named Leader in Gartner’s Magic Quadrant for fifth year
Zscaler unveils cellular SIM security for IoT & OT devices

Top stories

Alcatel-Lucent Enterprise unveils OmniVista Terra for secure networks
CommScope, DvSum launch AI platform to boost network analytics
Exclusive: Elevate meets increased DC demand with integrated solutions platform
Only 6% of SSH servers ready for post-quantum encryption
Plextek advances radar for UK’s CLEAR space debris removal mission