Deutsche Telekom and Palo Alto Networks are launching Sovereign Cortex with T Security: a joint offering that combines market-leading AI-powered cybersecurity with a data-sovereign architecture developed specifically for Europe. The product is aimed at sectors with high regulatory requirements, such as healthcare, the public sector, financial services and operators of critical infrastructure. It is designed to meet European compliance requirements for critical infrastructure, including DORA, NIS-2 and the GDPR.
In today’s threat landscape, attackers move from initial access to data exfiltration in just 72 minutes – four times faster than a year ago. To keep pace, organisations and businesses need cloud-based, AI-powered protection. At the same time, European regulations require demonstrable control over data, its encryption and access permissions.
Sovereign Cortex with T Security combines Palo Alto Networks’ SOC platform, which works with AI agents, with Deutsche Telekom’s cybersecurity expertise. This delivers a joint solution for European compliance and quality requirements. The Sovereign Cortex solution from Palo Alto Networks is operated on Deutsche Telekom’s Sovereign Google Cloud Platform. And T Security provides SOC and identity management services, as well as encryption technology via its own data centres.
Whilst most sovereign offerings stop at data residency, this architecture manages every layer of the customer data environment: all customer and system data – including telemetry and threat intelligence – is stored, processed and accessed exclusively within Europe. Encryption is managed entirely by Deutsche Telekom, which uses Google Cloud’s External Key Manager. Deutsche Telekom stores and manages the Key Encryption Key (KEK) outside the reach of both Palo Alto Networks and Google, and retains sole authority over data access.
This level of control is underpinned by Deutsche Telekom’s role as the European anchor of trust for this offering. It brings decades of European trust, a pan-European SOC network, and in-depth expertise in regulated industries and the public sector to the table. Deutsche Telekom holds the Key Encryption Keys, conducts independent audit oversight, provides identity services, and operates the service entirely within Europe. This makes sovereignty a structural feature of the service, rather than merely a contractual safeguard.
“European organisations – from public bodies to operators of critical infrastructure – have told us clearly: they need real-time AI-driven security and verifiable data sovereignty controls, and they should not have to choose between them. We have heard that. This is our direct response to what customers and regulators across Europe are demanding – a service that respects Europe’s sovereignty, maintains the security efficiency and modular platformisation our customers rely on, and reflects the trust they place in us.” (Helmut Reisinger, CEO EMEA, Palo Alto Networks)
‘Our joint offering is currently unique in Europe at this level of quality. We meet the compliance requirements of NIS-2, DORA and KRITIS regarding data sovereignty – without requiring our customers to compromise on the effectiveness of their cyber defences.’ (Thomas Tschersich, CEO of Deutsche Telekom Security GmbH and CSO of Deutsche Telekom AG)
Sovereign Cortex with T Security will initially be made available to European public sector organisations, operators of critical infrastructure and highly regulated industries. The offering will be expanded at a later date.