The best solution for educational institution security! Enables incident investigations of teachers' and students' PCs while keeping overall costs down

Keio Gijuku University, we believe that measures that can quickly identify threats and minimize damage are necessary as countermeasures against recent sophisticated cyberattacks. However, as an issue peculiar to universities, priority is given to autonomy and independence, and it is practically impossible to centrally manage the implementation status of security measures and the status of definition files for the terminals of professors and researchers. . It is natural for students to use BYOD, and there are many cases where guest researchers connect to the campus network with their own devices, which poses a security risk. In addition, when the laboratory had its own network address translation (NAT) such as routers, it was difficult to identify the terminal after network security was detected because it was not possible to grasp the situation under the NAT (Network Address Translation). In addition, security knowledge was concentrated in the CSIRT and some ITC staff, and there was also the problem of personalization in that the number of people with investigative skills was limited.

We will introduce how Keio Gijuku University was able to solve these problems by introducing the Threat Hunting & Incident Response Service.