Extensive experience in formulating overall product security plans

We have conducted numerous surveys into the actual state of our customers' product security maturity by adding our own unique knowledge to globally referenced guidelines such as CSF and IEC62443.

We conduct surveys of both field departments and governance control departments to visualize the issues, and then we formulate an ideal situation and create a mid-term roadmap for measures.

Knowledge as a technology trading company that can provide a one-stop service right up to implementing countermeasures

We can not only help with formulating mid-term plans, but also assist with the execution phase of the plan, including organizational restructuring and process creation/improvement.

We provide support from security measures for each product to the company-wide adoption of tools that streamline process execution, right up to the implementation of technology and the start of operation.

High-quality development process support based on knowledge gained through many years of manufacturing

We provide a comprehensive service that includes desk-top evaluations to identify potential risks in products and penetration testing based on the results of those evaluations.

In addition, we provide the high-level support that is possible only because we have experience in manufacturing as a semiconductor trading company, such as developing development process improvement measures and examining security technology requirements based on the survey results.

Support for implementing secure development processes

The foundation of product security activities is the secure development process. A variety of security practices are added to the development process, some of which require highly specialized security knowledge, creating a major barrier for product manufacturers. Macnica provides support for the implementation and in-house development of these highly specialized practices.

threat analysis

Threat analysis makes it possible to clarify the security goals of the product by thoroughly identifying risks and determining how to respond to each risk. By reviewing and interviewing the customer's product specifications, we understand the assets to be protected and the situation in which the target product is placed. Based on this information, we make a list of attackers, attack scenarios, threats, and vulnerabilities, and rank them by the impact they will have if left unattended. The final report also includes recommended countermeasures.

Duration: 2-3 months per product
Amount: From 5,000,000 yen
*Prices listed do not include tax

Penetration test

Penetration testing is performed to confirm whether the goal setting was sufficient and whether the implemented security measures are working effectively. Penetration testing provided by Macnica and its partners can be applied to a wide range of products and systems. We will create a proposal based on the information provided and conduct testing that meets your needs after consulting with you. We also provide retesting after vulnerabilities have been fixed, so you can check whether vulnerabilities found in the first test have been fixed.

 

Period: Approximately 3 months per target product
Amount: From 7,000,000 yen
*Prices listed do not include tax

Product security system construction support

We will help you organize your product security implementation items, build a product security system that suits your corporate culture, and develop a mid-term action plan based on the challenges you are currently facing, such as complying with laws and regulations and acquiring knowledge.

Duration: 3 months or more
Amount: Please inquire depending on the support system

Maturity Survey

We will investigate your current product security activities from the perspectives of organizational structure, human resources, devices, systems, data, and processes. In the investigation, we will use a hearing sheet created by Macnica with reference to various guidelines and frameworks, and interview relevant parties as necessary, and then provide you with potential issues in your product security activities and a roadmap for improvement measures.

 

Duration: 3-4 months
Price: From 8,000,000 yen
*Prices listed do not include tax