Tenable Selected by Keio University to Gain Visibility into its Blindspots

 Tenable®, Inc. the Exposure Management company, today announced that Keio University Shonan Fujisawa Campus (SFC), has chosen Tenable Attack Surface Management to identify and assess previously unknown internet-facing assets.

Located in Fujisawa, Kanagawa Prefecture, Keio SFC is renowned as one of Japan's top private universities, focusing on teaching and research excellence. Keio SFC operates its own Information Technology Center (ITC), responsible for managing and maintaining the IT infrastructure, including PCs, servers, and network systems, while also offering support for various services and terminals. The ITC also oversees the creation and management of service accounts required for user access.

Being a research-oriented campus, Keio SFC encourages students and faculty members to utilize the ITC infrastructure for various purposes, such as creating websites, testing new technologies, and publishing research findings. This also meant that the deployment of IT assets, cloud services, and apps created blindspots that security teams were unaware of. 

"The campus administration is committed to fostering an environment that encourages flexibility in usage while ensuring robust security measures,” said Kentaro Hiyama, Shonan Fujisawa Information Technology Centre. We actively monitor communications and identify any suspicious interactions with unauthorized sites to safeguard our digital assets."

Acknowledging the evolving threat landscape and the importance of protecting sensitive information, Keio SFC recognized the need for deeper insights into their complete attack surface and the vulnerabilities present in the software they were utilizing. Building on their existing use of Tenable Vulnerability Management, Keio SFC opted to complement it with Tenable Attack Surface Management to achieve comprehensive visibility into their digital footprint within the ITC.

"With this solution, we can extract more in-depth information based on host names, which allows us to prioritize vulnerabilities effectively. The user-friendly language used to describe the impact of each vulnerability makes it easier for us to take prompt action and reduce risks," said Korry Luke, Assistant Professor, Keio University Information Technology Centre Headquarters.

During the initial phase, approximately 200 sites were assessed, revealing vulnerabilities in around 20 of them, such as outdated versions of WordPress. Upon discovering these issues, the ITC promptly notified the responsible faculty members, who were appreciative of the specific and actionable information provided, enabling them to promptly address the identified risks.

“Through the integration of Tenable Attack Surface Management into Tenable Vulnerability Management, we have the ability to unearth novel assets and domains effortlessly. Swift assessment for vulnerabilities can be done in a matter of a few clicks, presenting a significant boon in terms of time and resource efficiency,” said Mr. Hiyama, Shonan Fujisawa ITC, Keio SFC. “We’re able to offer targeted information to our users, such as notifying them that their software version is outdated and poses risks, along with actionable steps to address the issue. This approach proves more effective than general warnings, allowing users to make informed decisions and respond promptly. The main job of teachers and students is teaching and research, not server operation. Consequently, our streamlined communication with users has led to a reduction in response costs.”

Furthermore, Tenable Attack Surface Management's openness and compatibility proved valuable, enabling scan results to be generated in open formats like CSV, facilitating integration with other systems and streamlined processing using scripts. The solution's ability to handle exceptions and exclude specific elements from scanning further contributed to its appeal.

"As organizations' digital assets become more exposed to the internet, security teams often lack full visibility of their attack surface,” said Naoya Kishima, Country Manager at Tenable Japan. “Keio SFC's proactive approach to gaining comprehensive visibility of their external attack surface sets a commendable example, and we are honored to be part of their security journey."

-End-

关于 Tenable

Tenable® 是一家风险暴露管理公司。Approximately, 43,000 organizations around the globe rely on Tenable to understand and reduce cyber risk. Tenable 是 Nessus® 产品发明者，凭借在漏洞方面的专业技术，推出了全球首个检查和保护各种计算平台上数字资产风险的平台。Tenable 的客户包括 60% 左右的《财富》500 强企业、40% 左右的全球 2000 强企业和大型政府机构。Learn more at tenable.com.

Media contact
Tenable PR
[email protected]