Global IT security monitoring system
Yokogawa Electric develops and manufactures measurement and control equipment for the oil, gas, and chemical industries, amongst others. Since its establishment in 1915, the company has provided equipment that is indispensable for the operation of plants in Japan and worldwide. Currently, control systems account for approximately 90% of its sales, with overseas business accounting for around 70% of total sales.
Yokogawa Electric is expanding globally; however, office locations worldwide have been installing different IT equipment and software, and monitoring security based on their own policies. The resulting inconsistent IT security management has posed a challenge to the business’s global operations.
The company has established the Yokogawa Security Operation Center (Y-SOC) to monitor security centrally and improve global operations. As of June 2020, the center covers 15 locations around the world.
“We have built a system that compiles events and security logs from some 35,000 IT infrastructure configuration items, comprising PCs, servers, and gateways used in each location. It automatically detects and analyzes suspicious communications and events, and issues alerts. Y-SOC security analysts use the system to monitor IT security centrally. If an alert is issued, on-site engineers are prompted to take action,” says Tetsuo Shiozaki, Deputy Head of Digital Strategy Headquarters, Yokogawa Electric Corporation.
Visibility of IT asset statuses across all locations
It is important to be aware of all the IT infrastructure configurations used by each location to create an automated detection and analysis system.
In January 2020, Yokogawa Electric implemented ServiceNow IT Operations Management (ITOM) with an IT asset management feature. This has facilitated overall management and provided full visibility of the IT infrastructure assets to the company. At the same time, the scope of Y-SOC security monitoring has expanded from six to 15 locations globally, covering most parts of the world.
“I’m grateful to have visibility of IT asset statuses for locations in countries with strict overseas access restrictions, such as China and Russia,” says Shiozaki.
Having a good understanding of IT asset installation statuses for all 35,000 locations eliminates gaps in security monitoring. It also enables good governance, helps optimize vendor selection and applications, and simplifies global IT investment plans.