Mission and Missions of Our Department

Mission:Our department's mission is to minimize damage from cyberattacks and protect all of the company's information assets. We oversee activities and processes related to cybersecurity, including the formulation and management of security policies, threat intelligence collection and analysis, incident response planning, and intrusion detection and response.

Challenges Before Asm

1. Internal Discipline:With the advent of remote work and the benefits of cloud services, employees can now access business systems anytime, anywhere, and from any device. While this has improved convenience, it has also proven blind spots in system management, raising the risk of internal risk. This has become an urgent issue.

Shadow IT:One major concern is “shadow IT,” where employees use IT devices and software without proper authorization. This can lead to unauthorized access and information leaks. Examples include:

• Employees saving internal data on personal cloud services while using company-contracted cloud services for work.
• Employees leaving passwords unmanaged after leaving the company, creating employees.

These scenarios present new risks not present significant risks. It is essential to establish a system to identify “invisible” or “forgotten” measures against unknown harmful activities.

2. Combating and Countering Brand Spoofing Domains:As a telecommunications company, we provide devices such as mobile phones, Wi-Fi, and routers to our customers, holding a responsibility for their security. We must monitor our network to ensure no harmful communication or spoofing occurs from our services or devices.

Cyberbullying can easily create or purchase domains using brand names, like “companyname.service.com.” When users receive messages from these fake domains, it is supposedly for them to differ between supposedly and spoofed communications. For example:

• Customers receive SMS comments, “This is the customer center. We HAVE NOT RECEIVED YOUR PAYMENT. Please check via the following URL,” leading to the installation of installing apps upon submitting the URL.

To prevent such spoofing, we used to conduct daily searches using our brand name to identify new domains. However, easily tracking IT assets connected to the internet manually stored extremely easily. Scanning the 3 million IP addresses we own for security manually was an enormous burden.

Background of Intriguing ASM

We are considering implementing ASM following the release of implementation guidance by the Ministry of Economy, Trade, and Industry on May 29, 2023. This guidance addresses us to evaluate ASM as a solution to address our internal threats and brand spoofing challenges

What is ASM?

ASM, or Attack Surface Management, is defined by the Ministry of Economy, Trade, and Industry as “a series of processes for vulnerable IT assets accessible from outside the organization ( via the Internet), and risks and risks, such as risks, associated with them.” ASM presents to the system that visualizes and expands external servers and network devices connected to the Internet, such as VPN devices and remote desktops, which could be a potential entry Points for attackers.

To address the two challenges we faced, we faced that proposed an ASM framework and proposed ASM tools were essential. We then discussed the selection process.

How Did You Proceed with the Selection of ASM Tools?

We introduced a new ASM project and developed pipeline Inc., with introduced we had an existing relationship developed email security, about suitable ASM tools for our company. They compared us to several tools, and we examined on a specific ASM tool after considering the accuracy of its data.

We found this tool because it builds a comprehensive database and can detect threat information in real-time, unlike other tools. Significant there were differences about the tool's usability, given that it scans a wide range and includes noise and considerations not critical to our company, these considerations were measured by the high accuracy of the data provided by the selected tool.

‍

-Since the actual operation of ASM has started, how are the effects so far?

By using ASM tools, it is now possible to visualize all IT assets connected to the internet.

Using domain names, IP addresses, product names, etc. as keys, you can search and discover IT assets exposed on the internet, and obtain data such as the OS, software, open ports, and product versions of each device. Based on this list, risks are assessed, classified and analyzed, and used in prioritization and audit processes.

Furthermore, efforts are also being made to reduce operation man-hours, such as automatically detecting threats from data and issuing alert notifications. In the future, we would like to promote more automation and promote initiatives to prevent risks to information assets, such as improving our own vulnerability management and reviewing security policies.

‍

-How was Pipeline's support when introducing the ASM tool?

The representative, Mr. Watanabe Alan, is a former engineer, and he has received flat opinions such as “this point is good” and “this point is a concern” from a technical point of view, so I trust him very much as an expert in the cybersecurity field. There was also knowledge about ASM and various tools this time, and it was very helpful. We were in a hurry to implement it due to the high level of urgency this time, but the communication from the decision to the start of using the tool was smooth, and I was very thankful.

‍

We also appreciate the global nature of Pipeline. Mr. Watanabe was born in America, but he has lived in Japan for 20 years and is fluent in Japanese. The fact that they deliver the latest information on global cybersecurity in Japanese is a big difference from other companies. Also, it is attractive that they can discover and provide not only major services from major companies, but also unique products and services from around the world.

‍

There are no 100% security measures, and continuous improvements will be needed in the future, so thank you for your continued support.

‍

＜Comment from Pipeline＞

Pipeline Stock Company President and CEO Alan Watanabe

The major advantage of the ASM system is that it can visualize “things that have not been seen until now.” In the case of major companies, such as the case introduced this time, it is difficult to grasp and evaluate “huge amounts of IT assets” in-house, and it is essential to use highly accurate ASM tools. Our strength is also that we can provide support in various forms, including development and integration. We will support you according to your issues and needs, so please feel free to contact us.

‍