内部不正発覚後の被害極小化〜起こってしまった後にやること〜

Transcript

1.   
     
   
      

   "%$$%  %  
    %$  !%#%

2. (C) Recruit Technologies Co.,Ltd. All rights reserved. 2 c i

   R e t c e i r IT S4 C u i S4 
    

3. (C) Recruit Technologies Co.,Ltd. All rights reserved. 3 . .

   1 2 3

4. (C) Recruit Technologies Co.,Ltd. All rights reserved. 4 . .

   1 2 3

5. (C) Recruit Technologies Co.,Ltd. All rights reserved. " 5 

   % ' !%#! +* ) $!* + &(

6. (C) Recruit Technologies Co.,Ltd. All rights reserved. " 6 (#%'!&+*$'

    #%'( ! $ "

7. (C) Recruit Technologies Co.,Ltd. All rights reserved. 7
   JNSA 2017

     https://www.jnsa.org/result/incident/ 5 + ) ) + (

8. (C) Recruit Technologies Co.,Ltd. All rights reserved.   8

     " # "!

9. (C) Recruit Technologies Co.,Ltd. All rights reserved. 2 9 2

10. (C) Recruit Technologies Co.,Ltd. All rights reserved. " 10 

    % ( !%#! .#-&#*# + $!, . ')

11. (C) Recruit Technologies Co.,Ltd. All rights reserved. 11 . .

    1 2 3

12. (C) Recruit Technologies Co.,Ltd. All rights reserved.   12

       

13. (C) Recruit Technologies Co.,Ltd. All rights reserved. 13 Ø W

    e B b e l l M l il l ) ( l / Se l l il l ) ( l / b b l 3 Ua i i l

14. (C) Recruit Technologies Co.,Ltd. All rights reserved. 14 l +

    l + l ) + l + l + l ( + IPA 
      https://www.ipa.go.jp/files/000057060.pdf

15. (C) Recruit Technologies Co.,Ltd. All rights reserved. 15 l +

    l + l ) + l + l + l ( + IPA 
      https://www.ipa.go.jp/files/000057060.pdf

16. (C) Recruit Technologies Co.,Ltd. All rights reserved. 16 ( l

    l l )/ l l IPA 
      https://www.ipa.go.jp/files/000057060.pdf

17. (C) Recruit Technologies Co.,Ltd. All rights reserved. 17 l l

    ) l D I l ( IPA 
      https://www.ipa.go.jp/files/000057060.pdf

18. (C) Recruit Technologies Co.,Ltd. All rights reserved. 18 l l

    l 3
          http://www.meti.go.jp/policy/economy/chizai/chiteki/trade-secret.html

19. (C) Recruit Technologies Co.,Ltd. All rights reserved. 1 CEMH 19

    +)(%E0E  >O?OEG:C.F!EM5 l 6#7BF4"J',#CIEA8N;B l 632*7BF432*&$DKM D32B=@ <O*<O@9N;B l 6/ 7BF4-B LO@9C9IEA8N;B  
        
          http://www.meti.go.jp/policy/economy/chizai/chiteki/trade-secret.html

20. (C) Recruit Technologies Co.,Ltd. All rights reserved. 20 . .

    1 2 3

21. (C) Recruit Technologies Co.,Ltd. All rights reserved. 21 2 
    

      2 2 9 2 2 9 2

22. (C) Recruit Technologies Co.,Ltd. All rights reserved. -%'lgs! pC" 22

    -%'lg+,rbew:sYOqˆŽ‘H R • &ƒ‘Šs ?uCSIRTs (A6 5. J • =1s^X/Gd/amcvc/Nrqac • =ZUs^X(/0[_S)→7/@K <Fr %2 • gk+,r:hn`M4qr%2 ‰‹‹‘S  a xj : 7V •B; r\y%2gWPiw •5.uQ-Sr: (M4r:gqapTqw]t) •$srE ffo†€‚Œˆ}€„~ fsr3 >8&s )Dd9pqw †‡|u…Šs#LI*s#

23. (C) Recruit Technologies Co.,Ltd. All rights reserved. 23 i Ø

    i H= Ø i i i S W = i n r o sr n ( ) U e b c FB = D

24. (C) Recruit Technologies Co.,Ltd. All rights reserved. 24 :NPO)&'.2,!/1&($ #

    +- 17 https://digitalforensic.jp/wp-content/uploads/2018/10/guideline_7.1.pdf )&'.2,!/1&($,03  

25. (C) Recruit Technologies Co.,Ltd. All rights reserved. 25  

       2 1 
      

26. (C) Recruit Technologies Co.,Ltd. All rights reserved. 26 3*56-0+$ $&

    "% () ! "%  "% (HDD,SSD,USB!,SD) #
     & % "%   "%(SaaS:Dropbox) IOT "%  $    & "%   "% (IaaS:AWS) Ø $&./)4$#' ! 12).% 
    VDI %% $ "

27. (C) Recruit Technologies Co.,Ltd. All rights reserved. 27 
     IQPW

    aFH SpBf8 wC %4)5& EsIQ IQTbc ]OTb IQ=qZ I Q9D^`E sIQEgIQ kze[ 7v Tb IQYdC  7v!M Tb $%*) & „}8Tb,%/ $3'1. %2#"5.IQ <vLy
    FH-* u~ lNo IQ<v Ly-*r{]6 Ai aha FH!Eg :; #5(-5. ‰N!Š†
    >j n7…ƒtAi
    |IQ‡‚Xx "
     ' IQkze[ 7v!IQ=q m lN Xx ?@e[GTbc!e [
      # $%! J\€Tb|
    lNo ˆRU Xx_T IQ<v8Ly u~ IQ<v8a hAi!Eg :; #5(-5. ( 05+   VK<o !!
     !" 

28. (C) Recruit Technologies Co.,Ltd. All rights reserved. %!\Wb_7 28 %!\W#$aSVf

    /bJ@`mrs; C • lsob 3dCSIRTb "5- ,& < • 2 )bOI/:U/R]TeT/?a`RT • 2KFbOI('(LPD)→./4= 19a * • W[#$a/X^Q>+`a* nqkppskD  RgZ / .G •60aMh*WHAYf •,&dB%Da / (>+a /W`R_E`fNc) • ba8

29. (C) Recruit Technologies Co.,Ltd. All rights reserved. 2/64" 29 Ø

    (GAKE ü  +* ü FKH>;= &5BDCI FKH7,>':8 $/0<!-?13. (  J% # 5  -  )

30. (C) Recruit Technologies Co.,Ltd. All rights reserved. ( 30 Ø

    ü ü 
     • • • • • • • • ) • + ( ࣄલ४උ

31. (C) Recruit Technologies Co.,Ltd. All rights reserved. i 31 W

    r e Ø ü ü
         • T rt e e r • b i i e r i e w

32. (C) Recruit Technologies Co.,Ltd. All rights reserved. P M I

    32 T Ø ü I ü
         • ) • O ) • R C ) • S ) S • C ) ࣄલ४උ

33. (C) Recruit Technologies Co.,Ltd. All rights reserved. "VP]Y0 33 Ø

    '#r4pmso ü  Jd`YB<i$NWGL ü  X@Ze(X3!]b  X7]@ZeiPWE S] Epklqi-ORT ]>/i=IW:[f6?i* acHF 9 '#r4 ,1\&  G + )A ) %;  &r.5 'J\E7UYGH2;K[Mg_3 !] )\^+QWbdI[GUhH [FD8bCGF

34. (C) Recruit Technologies Co.,Ltd. All rights reserved. 34 Ø ü

    () ü P C P () ࣄલ४උ

35. (C) Recruit Technologies Co.,Ltd. All rights reserved. 35 Ø )

    1 ü ü ( 1 1 ü ( ) 1

36. (C) Recruit Technologies Co.,Ltd. All rights reserved. H 36
    

    Ø ü d u B P ü S ü o ü    
        ü a p s I r ( ) , okk ü cs ü U w u ü s ü C D ü ) p ࣄલ४උ ׵͑ͷి஑ ΋๨Εͣʹ

37. (C) Recruit Technologies Co.,Ltd. All rights reserved. 37
     Ø

    ü ) ( ü ü ) ü b ü b W b b e

38. (C) Recruit Technologies Co.,Ltd. All rights reserved. 38 Ø C

    
     P

39. (C) Recruit Technologies Co.,Ltd. All rights reserved. G 39
    

    Ø b a ) / . c_ 099 ( 7.-7:19 9.-0 - 2 / -- : 9 01 9 7

40. (C) Recruit Technologies Co.,Ltd. All rights reserved. # !A>IF, 40

    Ø %4 ü 5IYR\]UXS[]W_P C=D:< %4BD.P>@ML9I;O ;MG97778 []W_H">@MJ2 E1HGNK?F7778 3 '$^/ *- H &  9 ) (6 ( %4  &^+0 ࣄલ४උ

41. (C) Recruit Technologies Co.,Ltd. All rights reserved. C 41 Ø

    h ü n ü a ya y y ü o ü si h ü ( ( ) ( Ø () ü ü tf du ౤ӨͷΈ

42. (C) Recruit Technologies Co.,Ltd. All rights reserved. ( 42 Ø

    ü ( )

43. (C) Recruit Technologies Co.,Ltd. All rights reserved. 43
     Ø

    ) ü ü 2 ü 2 ü ) ü ( ü ) ü )

44. (C) Recruit Technologies Co.,Ltd. All rights reserved. S 44 

        Ø U S ü B UB U B B B . S

45. (C) Recruit Technologies Co.,Ltd. All rights reserved. C 45 SU

    B P C P B B     

46. (C) Recruit Technologies Co.,Ltd. All rights reserved. A 46 C

    U s P s l B B D S     

47. (C) Recruit Technologies Co.,Ltd. All rights reserved. . 47 

       

48. (C) Recruit Technologies Co.,Ltd. All rights reserved. 
     

    48
          

49. (C) Recruit Technologies Co.,Ltd. All rights reserved. '$ 49 Ø

    &(%$ +!/) ., (%#- /%$/*%      

50. (C) Recruit Technologies Co.,Ltd. All rights reserved. 50 Ø ü

    ü 2 2 2 2

51. (C) Recruit Technologies Co.,Ltd. All rights reserved. 2 51 

    Ø ü P ü P ü P ü ü ( ü C ) Ø ü

52. (C) Recruit Technologies Co.,Ltd. All rights reserved. >:DA% 52 Ø

    <D D " ü /J=1&24K; " 99F@+C ":?G2RTN H4K; "-7(4A $0:?:F53  F@7*8B4B3 #' C  RTNSSVN 4K; " !.E ,  U) #' C  4 " !. POIB4@22

53. (C) Recruit Technologies Co.,Ltd. All rights reserved. 53 Ø )

    Ø
     ( (

54. (C) Recruit Technologies Co.,Ltd. All rights reserved. ) 54 l

    l l l l l ( l ) 3 l l )   

55. (C) Recruit Technologies Co.,Ltd. All rights reserved. ( 55 l

    ) l l l l   

56. (C) Recruit Technologies Co.,Ltd. All rights reserved.   56

    !    $ %"#

57. (C) Recruit Technologies Co.,Ltd. All rights reserved. 57