慶應義塾大學選擇 Tenable 解決方案以取得深入其盲點的能見度
Tenable Attack Surface Management empowers a teaching and research-focused environment for faculty members
September 12, 2023 · Tokyo, Japan
Tenable®, Inc. the Exposure Management company, today announced that Keio University Shonan Fujisawa Campus (SFC), has chosen Tenable Attack Surface Management to identify and assess previously unknown internet-facing assets.
Located in Fujisawa, Kanagawa Prefecture, Keio SFC is renowned as one of Japan's top private universities, focusing on teaching and research excellence. Keio SFC operates its own Information Technology Center (ITC), responsible for managing and maintaining the IT infrastructure, including PCs, servers, and network systems, while also offering support for various services and terminals. The ITC also oversees the creation and management of service accounts required for user access.
Being a research-oriented campus, Keio SFC encourages students and faculty members to utilize the ITC infrastructure for various purposes, such as creating websites, testing new technologies, and publishing research findings. This also meant that the deployment of IT assets, cloud services, and apps created blindspots that security teams were unaware of.
"The campus administration is committed to fostering an environment that encourages flexibility in usage while ensuring robust security measures,” said Kentaro Hiyama, Shonan Fujisawa Information Technology Centre. We actively monitor communications and identify any suspicious interactions with unauthorized sites to safeguard our digital assets."
Acknowledging the evolving threat landscape and the importance of protecting sensitive information, Keio SFC recognized the need for deeper insights into their complete attack surface and the vulnerabilities present in the software they were utilizing. Building on their existing use of Tenable Vulnerability Management, Keio SFC opted to complement it with Tenable Attack Surface Management to achieve comprehensive visibility into their digital footprint within the ITC.
"With this solution, we can extract more in-depth information based on host names, which allows us to prioritize vulnerabilities effectively. The user-friendly language used to describe the impact of each vulnerability makes it easier for us to take prompt action and reduce risks," said Korry Luke, Assistant Professor, Keio University Information Technology Centre Headquarters.
During the initial phase, approximately 200 sites were assessed, revealing vulnerabilities in around 20 of them, such as outdated versions of WordPress. Upon discovering these issues, the ITC promptly notified the responsible faculty members, who were appreciative of the specific and actionable information provided, enabling them to promptly address the identified risks.
“Through the integration of Tenable Attack Surface Management into Tenable Vulnerability Management, we have the ability to unearth novel assets and domains effortlessly. Swift assessment for vulnerabilities can be done in a matter of a few clicks, presenting a significant boon in terms of time and resource efficiency,” said Mr. Hiyama, Shonan Fujisawa ITC, Keio SFC. “We’re able to offer targeted information to our users, such as notifying them that their software version is outdated and poses risks, along with actionable steps to address the issue. This approach proves more effective than general warnings, allowing users to make informed decisions and respond promptly. The main job of teachers and students is teaching and research, not server operation. Consequently, our streamlined communication with users has led to a reduction in response costs.”
Furthermore, Tenable Attack Surface Management's openness and compatibility proved valuable, enabling scan results to be generated in open formats like CSV, facilitating integration with other systems and streamlined processing using scripts. The solution's ability to handle exceptions and exclude specific elements from scanning further contributed to its appeal.
"As organizations' digital assets become more exposed to the internet, security teams often lack full visibility of their attack surface,” said Naoya Kishima, Country Manager at Tenable Japan. “Keio SFC's proactive approach to gaining comprehensive visibility of their external attack surface sets a commendable example, and we are honored to be part of their security journey."
-End-
關於 Tenable
Tenable® 是一家曝險管理公司。Approximately, 43,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. 身為 Nessus® 的創造者,Tenable 拓展了自己在弱點方面的專業知識,以提供全球第一個可在任何運算平台上查看和維護任何數位資產安全的平台。在 Tenable 的客戶中,包含大約 60% 的財星 500 大企業、大約 40% 的全球 2,000 大企業以及大型政府機構。Learn more at tenable.com.
Media contact
Tenable PR
[email protected]
- Attack Surface Management