NEC's initiatives and achievements.
NEC joins AIS to reinforce cyber intelligence.
NEC participated in the Automated Indicator Sharing (AIS) initiative implemented by the United States Department of Homeland Security (DHS) that swiftly shares cyber threat indicators between the government and the private sectors.
AIS enables the swift sharing of indicators on threats from cyber attacks (such as IP addresses, domain names, sender addresses of phishing emails) between the United States Federal Government and private companies and organizations in the United States and abroad. This is accomplished via the information system provided by the National Cybersecurity and Communications Integration Center (NCCIC) under the umbrella of the DHS. This enables a threat from the latest cyber attack to be swiftly identified, preventing the damage of a particular threat from spreading.
Japan Cybercrime Control Center collaboration (JC3*) links industrial, academic and public sectors.
NEC is a full member of the Japan Cybercrime Control Center (JC3), a non-profit organization seeking to reduce cyber space threats by creating cooperative frameworks between the industrial, academic and public sectors.
JC3 promotes a pre-emptive, comprehensive response to cyber threats by capitalizing on the individual strengths of industry, academic research institutes and law enforcement agencies, and the police's stronger investigative rights.
JC3's ultimate aim is to encourage cooperation and information sharing among relevant institutions worldwide, so they can pinpoint the source of any threat, and localize or minimize any resulting damage.
- *NEC's Senior Officer, Takaaki Shimizu, was appointed JC3's first Representative Director.
Cooperating with the MIC's practical exercise to defend against cyber attacks
Since 2013 NEC has been cooperating with the "Experimental exercise to analyze and prevent cyber attacks" conducted by the Ministry of Internal Affairs and Communications (MIC). The purpose of these tests is to have system administrators of government and important infrastructure systems conduct Cyber Defense Exercises with Recurrence (CYDER) to protect against targeted attacks in a large-scale simulated ICT environment. From 2016, NEC has also been cooperating with CYDER programs for public organizations in 11 areas around Japan, and is helping to improve the incident handling skills of information system managers.
Providing cyber attack defense training for ASEAN countries to develop security personnel.
NEC has been providing cyber attack defense training for officials from governmental institutions responsible for cyber security in six members of the Association of Southeast Asian Nations (ASEAN) (Cambodia, Indonesia, Laos, Myanmar, the Philippines and Vietnam). This defense training aims to improve incident response to targeted cyber attacks on ASEAN countries. Training sessions feature lectures on the latest threats and security measures, as well as drills similar to the Cyber Defense Exercise with Recurrence (CYDER), which are practical cyber attack defense drills.
Also NEC contributes by providing CYDER for officials from government related institutes in Thailand and Malaysia.
NEC has established a JAIST endowed lecture series to train cyber security engineers.
From 2015, NEC has been providing an endowment to the Japan Advanced Institute of Science and Technology for a course entitled "Cyber Range Organization and Design" to enable advanced research into cyber security, and to develop personnel. Course participants research and develop cyber ranges (cyberspace training areas), and use them to design and develop education programs. The education programs that are developed are made available to other universities and institutions of higher learning.
NEC channels intensive internal and external security intelligence into its one-stop cyber security solution: The Cyber Security Factory.
When an incident actually occurs, information, technology, and personnel are all needed to implement a quick response. To that end, in 2014 NEC launched the Cyber Security Factory as a center for cyber security measures. This specialized organization coordinates with all companies within the NEC Group and our external collaborative partners, and brings together specialists who are experts in cyber security. This organization collects and shares advanced technologies, the latest attack methods and malware trends, and measure know-how. At the same time, it provides one-stop support that includes introduction and construction of security systems, 24/7 operations monitoring, and emergency response when incidents occur. Not only Japan, new centers were opened in Singapore, Europe and North America to reinforce our global monitoring infrastructure.
Also to make specialist's monitoring work sophisticated and efficient, threat analysis system using AI technology was deployed on a full-scale in 2017.
Cyber security factory: major functions
- Monitor customers' networks and websites 24/7
- Analyze/evaluate system resilience using cyber attack simulations
- Analyze cyber attack trends, share information and knowledge
- Use advanced techniques to develop sophisticated security technology
- Improve technological understanding of security managers, staff training
- Preserve and inspect evidence through advanced digital analysis
Collaborative partners (random order)
- LAC Co., Ltd.
- FFRI, Inc.
- Trend Micro Inc.
- S&J Corp.
- NRI Secure Technologies, Ltd.