Unable to fully grasp the usage status of cloud services with growing needs

KFC Holdings Co., Ltd. (hereinafter referred to as "KFC"), Japan which celebrates its 50th anniversary in 2020 with the corporate philosophy of "creating deliciousness and happiness," is developing "Kentucky Fried Chicken (KFC)" nationwide Japan. It is the parent company of KFC Holdings Japan, Ltd..

From the perspective of security, the company used PCs with user privileges instead of administrator privileges, and had to apply to the information system department when installing applications. However, recently, the need for cloud services has increased, and I felt that there was a limit to the operation. Shinya Komatsu, assistant manager of the system and common infrastructure section of the company's information system department, said, "Since two to three years ago, we have been receiving applications to use cloud services, and in the past year or so, the weight of cloud services has increased. However, browser-based tools can be used without administrator privileges, so some employees used them without applying, and I felt that we were not able to grasp the actual usage situation." talk to. In addition, when there was an application to use a cloud service, the information system department reviewed the reliability of the service and approved it, but the workload was also a burden.

Visualization of usage of permitted services Linkage with gateway products is also a decisive factor

Meanwhile, Macnica introduced Symantec CloudSOC (hereinafter referred to as CloudSOC). Mr. Komatsu said, ``At first, we were talking about shadow IT being able to be monitored and controlled, but after participating in Macnica 's seminars, I gained a deeper understanding and decided that it would be more than just a security solution, but would be used to improve usability and user convenience in the future. I realized that it was a solution that would lead to even more problems." CloudSOC has a function that not only visualizes the usage status of cloud services but also scores the reliability and risk of each service. "Furthermore, it is possible to visualize who has exchanged what data with services authorized by the company (hereinafter referred to as Sanctioned IT). In the past, security could be ensured as long as the boundaries between inside and outside the company were maintained, but now Data on the cloud must be managed in the same way.We believe that CloudSOC will be essential in promoting the use of the cloud in the future.'' (Mr. Komatsu)

According to Mr. Komatsu, another decisive factor in the selection was the ability to automatically link logs with the gateway-type web security service "Symantec Web Security Service (WSS)" that had already been introduced. “In order to visualize cloud service usage, proxy logs must be provided in some form, but doing this manually is time-consuming and carries the risk of information leakage. The fact that we were able to introduce CloudSOC in the form of a system and the convenience of log linkage was attractive," says Komatsu.

Secure governance with CloudSOC when promoting cloud service utilization

As a result of introducing CloudSOC in August 2018 and visualizing the usage of the cloud, we were able to confirm that more cloud services were being used than the information system department had grasped. “We are not banning these things because they are shadow IT, but we believe that we were able to confirm the existence of operations that the information systems department had not been aware of,” says Mr. Komatsu. Based on this data, we will proceed with discussions with the on-site department about how each business is using it. There are various services that are used, such as email, storage, and communication tools, but the priority of "services to be confirmed" such as services that exchange a large amount of data and are judged to be high risk by CloudSOC has been clarified. rice field. The data obtained in this way will be used for the management of Sanctioned IT. “Although it is difficult to implement governance in cloud services, data protection and compliance are equally essential. By introducing CloudSOC, which can visualize the

In addition, by using CloudSOC's reporting function to make internal announcements, each user is made aware of risks and governance is strengthened. It is also highly effective in the development of materials for internal executives and the formulation of in-house rules, as well as in supporting the investigation and decision-making of services requested by users.

The Company is also considering the introduction of integrated ID management (single sign-on), and the status of API linkage with integrated ID management will be an important criterion for cloud services. CloudSOC also includes the API linkage status in the score determination, and this information is also very useful. "CloudSOC has made the work of examining services one by one much more efficient. In the future, if the score of a service that has been applied for is low, I think we will be able to propose alternative services," says Mr. Komatsu. Currently, the servers that are currently running on-premises are also being considered in the direction of moving them to the cloud. When the number of services to be used increases, instead of using multiple IDs, we are also considering a mechanism that allows you to log in to all with a single ID. Using integrated ID management makes it easier to manage access rights to prevent retired employees from accessing business data, improving user convenience and strengthening security at the same time. CloudSOC is expected to serve as the foundation for such future developments.

Cloud usage outside the company can also be managed Highly rated from the perspective of work style reform

User Profile