Introduction in English
MBSD is the Japanese leading security company in managed security services, vulnerability assessment and testing, GRC (Governance, Risk, Compliance) consulting, incident response and handling, digital forensics, and secure programming training services. The MBSD services are provided by its personnel including the leading security experts in the field of secure programming, application security, penetration testing and threat analysis who have in-depth knowledge and understanding of attackers' methodologies. MBSD is working for the internet infrastructure companies, cyber commerce and media giants, financial institutes, global enterprise, and government agencies in Japan to support their strategies against rapidly increasing threats from cyber space.
The MBSD Team
The MBSD's core assets are its personnel. Its personnel includes the leading security experts in the field of secure programming, application security, penetration testing and threat analysis who have in-depth knowledge and understanding of attackers' methodologies. Each member is highly skilled security professional who also have plenty of field experience of application and web development programming or network architecture design, through which he/she has acquired security expertise against threats.
The managed security services:
The MBSD's managed security services provide real-time 24X7 monitoring of internet gateways from cyber threats. Our Security Operation Center (SOC) is operated by the experts and the leading security analysts for 24 hours a day, 7 days a week and 365 days a year. We are IDS/IPS vendor agnostic and not relying on pre-defined signatures. We are able to customize signatures to meet our clients' network structure and security requirement which shall be modified periodically or sometimes instantly based on the cyber threats reality.
The security analysts monitor and react to various network events to determine whether such events are harmful, harmless, or false positive and immediately report to the clients in emergency cases. The clients are able to respond quickly to prevent unauthorized access issues that could impact their critical assets.
The services include:
・IDS/IPS monitoring, tuning and correlation
・Proactive IDS/IPS management
・Web server log monitoring
MBSD consulting team has plenty of GRC consulting experience including global enterprise SOX compliance, Japanese SOX compliance, ISO 27001 qualification and renewal, and Business Continuity Planning. MBSD's experts, with their risk assessment methodology, are able to specify the major risks, propose the remediation options, and support the remediation project. They are also able to manage clients' GRC related daily operation as if they are the staff of the clients' chief security officers.
Incident response and handling, Digital forensics:
MBSD's incident response and handling services are for the clients in Japan who have or might have had the incidents of unauthorized access, data breakage, or data compromised. A client does not need advanced contracts with us and all they have to do is just to call us. MBSD's experts will be at their premises (in Japan) for initial assessment to see whether the incident would be serious and to what extent it would impact their critical assets. After initial assessment, the experts will be able to provide in-depth digital forensic analysis to find the actual impact including to what extent the data have been compromised, support for reporting to law enforcement agency, industry specific government agencies and credit card acquirers in case of credit card data compromised, advisory for remediation, and vulnerability testing in advance of recovery announcement.
Secure programming training services:
Secure programming for web application development is a key to reduce total security budget or even total IT budget. This is a fact MBSD has found through its undertakings with the clients. MBSD's secure programming training services are periodic recurring tutorial sessions either in person or on e-learning by its secure programming experts coupled with achievement test. Our best practice client has an internal practice of having all the members of their web programming team receive the tutorial sessions and achievement test to deepen their secure programming knowledge, quantify their skill levels and thereafter evaluating the applications the team will have built from vulnerability viewpoints. The client has maintained PDCA cycle of training services, development, and vulnerability check, which has grown their team to be the one of the best and most excellent security sensitive development arm. The secure web application development results in minimizing remediation work and contributes to total IT budget reduction. MBSD supports clients for building such PDCA cycle within their organizations.
Mitsui Bussan Secure Directions, Inc.
||March 23, 2001
|TT-1 Building 6F, 1-14-8, Nihonbashi Ningyo-Cho, Chuo-ku, Tokyo
|AKASAKA TAMEIKE TOWER 9F, 2-17-7, Akasaka, Minato-ku, Tokyo
Statutory Auditor：JUN SHIOZAWA
||MITSUI & CO., LTD.