å æ¬çãªãµã€ããŒã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã§ã客æ§ã®çµç¹ãä¿è·ããŸãããšã³ã¿ãŒãã©ã€ãºã°ã¬ãŒãã®ä¿è·ãã³ã³ãã©ã€ã¢ã³ã¹ããããŠå®å¿ãæäŸããŸãã
æçµæŽæ°

è åšãä¿è·ãæ€åºã察å¿ããããã®ãšã³ãããŒãšã³ãã®ãµã€ããŒã»ãã¥ãªãã£ãµãŒãã¹

ã€ã³ãã©ã¹ãã©ã¯ãã£ãã¢ããªã±ãŒã·ã§ã³ãããã»ã¹ã®å æ¬çãªã»ãã¥ãªãã£è©äŸ¡ã宿œããè匱æ§ãšã³ã³ãã©ã€ã¢ã³ã¹ã®ã®ã£ãããç¹å®ããŸãã

ã·ã¹ãã ã®ã»ãã¥ãªãã£ãè©äŸ¡ããããã«ãèš±å¯ãããæš¡æ¬ãµã€ããŒæ»æã宿œããŸããåœç€Ÿã®å«ççããã«ãŒã¯ãæªæã®ããæ»æè ãæªçšããåã«ãæªçšå¯èœãªè匱æ§ãç¹å®ããŸãã

GDPRãHIPAAãSOC 2ãISO 27001ãããã³æ¥çåºæã®ã³ã³ãã©ã€ã¢ã³ã¹ãã¬ãŒã ã¯ãŒã¯ã«é¢ããå°éå®¶ã®æå°ã«ãããè€éãªèŠå¶èŠä»¶ã«å¯Ÿå¿ããŸãã

ãã©ã¬ã³ãžãã¯èª¿æ»ãå°ã蟌ããæé€ã埩æ§ãµãŒãã¹ãå«ãã»ãã¥ãªãã£ã€ã³ã·ãã³ããžã®è¿ éãªå¯Ÿå¿ãæå®³ãæå°éã«æããéçšãè¿ éã«åŸ©æ§ããŸãã
ãšã³ã¿ãŒãã©ã€ãºã°ã¬ãŒãã®ãµã€ããŒã»ãã¥ãªãã£ããã°ã©ã ã匷åããé«åºŠãªæ©èœ
ã客æ§ã®æ¥çãšæè¡ã¹ã¿ãã¯ãæšçãšããæ°ããªè åšã®ããã¢ã¯ãã£ããªç£èŠãšåæ
匷åºãªèªèšŒããã³èªå¯å¶åŸ¡ã«ããããŒããã©ã¹ãã¢ãŒããã¯ãã£ãå®è£
ãšã³ã¿ãŒãã©ã€ãºããŒç®¡çã«ãããä¿åããŒã¿ãšè»¢éããŒã¿ã®end-to-endæå·å
ãªã¢ã«ã¿ã€ã ã®ã»ãã¥ãªãã£ã€ãã³ãç£èŠãšèªååãããã€ã³ã·ãã³ãæ€åºããã³ã¢ã©ãŒã
ã¯ãŒã¯ã¹ããŒã·ã§ã³ããµãŒããŒãã¢ãã€ã«ããã€ã¹ãä¿è·ããé«åºŠãªãšã³ããã€ã³ãã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³
åŸæ¥å¡åãã»ãã¥ãªãã£æèåäžããã°ã©ã ãšãã£ãã·ã³ã°ã·ãã¥ã¬ãŒã·ã§ã³æŒç¿
å æ¬çãªä¿è·ã®ããã®äž»èŠãªãµã€ããŒã»ãã¥ãªãã£ãã©ãããã©ãŒã ãšããŒã«
Splunk, QRadar, ArcSight
CrowdStrike, Carbon Black, SentinelOne
Palo Alto, Fortinet, Cisco
AWS GuardDuty, Azure Sentinel
Okta, Azure AD, Auth0
Nessus, Qualys, Rapid7
åœç€Ÿãå°å ¥ã»ç®¡çããæ¥çããªãŒãããã»ãã¥ãªãã£ããŒã«ãšãã©ãããã©ãŒã
å ç¢ãªã»ãã¥ãªãã£ããã°ã©ã ãæ§ç¯ããã³ç¶æããããã®äœç³»çãªã¢ãããŒã
éèŠãªè³ç£ãç¹å®ããè åšãè©äŸ¡ããæ¢åã®ã»ãã¥ãªãã£å¶åŸ¡ãè©äŸ¡ããŠãã客æ§ã®ãªã¹ã¯ãããã¡ã€ã«ãçè§£ããŸãã
æ¥çãã¬ãŒã ã¯ãŒã¯ã«ç §ãããã€ã³ãã©ã¹ãã©ã¯ãã£ãã¢ããªã±ãŒã·ã§ã³ãããã»ã¹ã®è©³çŽ°ãªæè¡ç£æ»ã
ãªã¹ã¯ã®é倧床ãšããžãã¹ãžã®åœ±é¿ã«åºã¥ããŠãç¹å®ãããè匱æ§ã®åªå é äœä»ããšå¯Ÿçãè¡ããŸãã
ã»ãã¥ãªãã£å¶åŸ¡ãç£èŠããŒã«ãã€ã³ã·ãã³ãå¯Ÿå¿æé ãå±éããŸãã
峿 Œãªãã¹ããšæš¡æ¬æ»æã·ããªãªãéããŠãã»ãã¥ãªãã£å®è£ ãæ€èšŒããŸãã
ç¶ç¶çãªè åšç£èŠã宿çãªè©äŸ¡ãé©å¿åã»ãã¥ãªãã£äœå¶ç®¡çã
é«åºŠã«èŠå¶ããããªã¹ã¯ã«ææãªåéå šäœã§ãµã€ããŒã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ãæäŸ
MicrocosmWorks ã¯äž¡æ¹æäŸããŠããŸããäžåºŠããã® penetration test ã¯ãã³ã³ãã©ã€ã¢ã³ã¹ã®ãã€ã«ã¹ããŒã³ããªãªãŒã¹åã®æ€èšŒã«ãå©çšããã ããŸããäžæ¹ãåœç€Ÿã®ç¶ç¶çãªã»ãã¥ãªãã£è©äŸ¡ãµãŒãã¹ã¯ãååæããšã®æåã«ãã penetration test ãšäžŠè¡ããŠãèªååãããè匱æ§ã¹ãã£ã³ãå®è¡ããŸããç¶ç¶çãªã¢ãã«ã«ã¯ãSplunk ã CrowdStrike ã®ãã㪠SIEM ãã©ãããã©ãŒã ãä»ãããªã¢ã«ã¿ã€ã ã®è åšç£èŠãå«ãŸããŠãããèŽåœçãªåé¡ã«å¯Ÿããã€ã³ã·ãã³ãå¯Ÿå¿ SLA ã¯æç 4 æéã§ãã
ã¯ããMicrocosmWorksã¯SOC 2ãHIPAAãGDPRãISO 27001ãããã³PCI-DSSåãã«ãšã³ãããŒãšã³ãã®ã³ã³ãã©ã€ã¢ã³ã¹ã³ã³ãµã«ãã£ã³ã°ãæäŸããŠããŸããç§ãã¡ã¯ãŸããã客æ§ã®çŸåšã®ã»ãã¥ãªãã£äœå¶ã®ã®ã£ããã¢ã»ã¹ã¡ã³ãããå§ããå¿ èŠãªããªã·ãŒãšæé ãçå®ããæè¡çãªç®¡ççãå®è£ ããç£æ»äººåãã«ææžãšèšŒæ ãæºåããŸããç§ãã¡ã®ããŒã ãäž»èŠãªäœæ¥ãæ åœããããšã§ãã»ãšãã©ã®SOC 2 Type IIã®åãçµã¿ã¯4ã6ã¶æã§å®äºããŸãã
MicrocosmWorksã¯ãSIEMã«ã¯SplunkãIBM QRadarãAzure SentinelããEDRã«ã¯CrowdStrikeãSentinelOneãCarbon Blackãå±éããŠããŸããåœç€Ÿã¯ãèªåã¢ã©ãŒãæ©èœãšå°éã®ã€ã³ã·ãã³ã察å¿ããŒã ãšãšãã«ã24æé幎äžç¡äŒã®ã»ãã¥ãªãã£ç£èŠãæäŸããŠããŸããè åšã€ã³ããªãžã§ã³ã¹ãã£ãŒããçµ±åãããŠãããã客æ§ã®æ¥çããã³ãã¯ãããžãŒã¹ã¿ãã¯ãæšçãšããæ°ããªæ»æãã¿ãŒã³ãããã¢ã¯ãã£ãã«æ€ç¥ããŸãã
MicrocosmWorks ã¯ãMFA (å€èŠçŽ èªèšŒ) ã®é©çšã䌎ã Okta ã Azure AD ã®ãã㪠ID ãããã€ããŒããããã¯ãŒã¯ãŸãŒã³ã®ãã€ã¯ãã»ã°ã¡ã³ããŒã·ã§ã³ããã¹ãŠã®ãªã¯ãšã¹ãã§æ€èšŒãããæå°ç¹æš©ã¢ã¯ã»ã¹ããªã·ãŒãããã³ç¶ç¶çãªããã€ã¹ã®ãã¹ãã£ãŒè©äŸ¡ã䜿çšããŠãŒããã©ã¹ããå±éããŠããŸãããã€ããªããç°å¢ã®å ŽåãPalo Alto Prisma ã Zscaler ã®ãããªããŒã«ã䜿çšããŠããªã³ãã¬ãã¹ãšã¯ã©ãŠãã®ãªãœãŒã¹éã§å®å šãªãã³ãã«ãèšå®ããäž¡æ¹ã§äžè²«ããããªã·ãŒé©çšãè¡ããŸãã
é倧ãªã€ã³ã·ãã³ãã®å Žåãæ€ç¥ãã15å以å ã«åœç€Ÿã®è¿ é察å¿ãããã³ã«ãçºåãããŸããèªååãããå°ãèŸŒãæªçœ®ã圱é¿ãåããã·ã¹ãã ãéé¢ããäžæ¹ãåœç€Ÿã®ã»ãã¥ãªãã£ã¢ããªã¹ãã¯ãã©ã¬ã³ãžãã¯èª¿æ»ã宿œããŸããMicrocosmWorks ã¯ãæ ¹æ¬åå ã圱é¿è©äŸ¡ã修埩æé ãããã³åçºé²æ¢çãç¶²çŸ ãã詳现ãªã€ã³ã·ãã³ãã¬ããŒããæäŸããŸããåœç€Ÿã®ç£èŠãã©ã³ããå©çšã®ã客æ§ã®å Žåãåå察å¿ã¯æé¡ãªãã€ããŒã«å«ãŸããŠãããæéã¯1æéããã10ãã«ãããšãªããŸãã
å æ¬çãªãµã€ããŒã»ãã¥ãªãã£ãœãªã¥ãŒã·ã§ã³ã§ã客æ§ã®çµç¹ãä¿è·ããŸããããä»ããå°éå®¶ã«ããç¡æã®ã»ãã¥ãªãã£è©äŸ¡ãäºçŽããæ»æè ãããå ã«è匱æ§ãçºèŠããŠãã ããã