[Case Study] Domestic CNAPP 'Cloudbase' Publishes Case Study of Implementation by SBI Sumishin Net Bank, Ltd.
Cloudbase Inc. published a case study on SBI Sumishin Net Bank's adoption of its domestic CNAPP 'Cloudbase'. It highlights the continuous visualization of multi-cloud security, leading to faster risk response and improved departmental collaboration.
📋 Article Processing Timeline
- 📰 Published: April 8, 2026 at 18:00
- 🔍 Collected: April 8, 2026 at 09:01
- 🤖 AI Analyzed: April 20, 2026 at 20:37 (299h 36m after Collected)
Cloudbase Inc. (Headquarters: Minato-ku, Tokyo, CEO: Koya Iwasa, hereinafter Cloudbase) announces the publication of a case study interview with SBI Sumishin Net Bank, Ltd. (Headquarters: Minato-ku, Tokyo, President & CEO: Noriaki Maruyama, hereinafter SBI Sumishin Net Bank), an internet-only bank pursuing customer convenience utilizing cutting-edge technology.
Please see here for details.
https://cloudbase.ink/case/sbi-sumishin-net-bank
Background of Implementation | Challenges in Continuous Visualization of Security Status
Due to the nature of an internet-only bank where the internet is the sole customer touchpoint, SBI Sumishin Net Bank positions security as one of its most important management priorities. Adopting a cloud-first approach company-wide, they operate business systems and OA environments in a multi-cloud setting.
However, they faced challenges in 'constantly' maintaining a grasp on the security status of the entire multi-cloud environment. Traditional vulnerability assessments and penetration tests are merely 'point-in-time' checks. It was difficult to answer the question, 'Are we truly secure at this very moment?' with certainty, as these methods couldn't cover risks arising from changes made immediately after the assessment.
Against this background, they decided to adopt 'Cloudbase,' which can visualize the security status of cloud environments in real-time.
Effects After Implementation | Swift Risk Response and Strengthened Organizational Collaboration
After implementing 'Cloudbase', they became able to continuously visualize misconfigurations and vulnerabilities in their multi-cloud environment, improving the speed of risk comprehension and response.
Because detected risks and remediation methods are clearly presented in Japanese, sharing information with development and infrastructure departments became easier, reducing communication costs between departments. A system has been built where each department can autonomously proceed with risk response while keeping the CSIRT as the hub.
Furthermore, multi-layered verification in conjunction with AWS native features has provided certainty and peace of mind regarding security measures. In addition, by utilizing the information visualized by Cloudbase for monthly reports to management, they can regularly grasp and share the security status, strengthening communication with executives.
Future Outlook | Making Security the Foundation for Business Growth
Based on the idea that security does not halt business growth but is a foundation for driving it safely, they will continue to build a security structure capable of sustainable evolution in collaboration with 'Cloudbase'.
Please see here for details.
https://cloudbase.ink/case/sbi-sumishin-net-bank
Background of Implementation | Challenges in Continuous Visualization of Security Status
Due to the nature of an internet-only bank where the internet is the sole customer touchpoint, SBI Sumishin Net Bank positions security as one of its most important management priorities. Adopting a cloud-first approach company-wide, they operate business systems and OA environments in a multi-cloud setting.
However, they faced challenges in 'constantly' maintaining a grasp on the security status of the entire multi-cloud environment. Traditional vulnerability assessments and penetration tests are merely 'point-in-time' checks. It was difficult to answer the question, 'Are we truly secure at this very moment?' with certainty, as these methods couldn't cover risks arising from changes made immediately after the assessment.
Against this background, they decided to adopt 'Cloudbase,' which can visualize the security status of cloud environments in real-time.
Effects After Implementation | Swift Risk Response and Strengthened Organizational Collaboration
After implementing 'Cloudbase', they became able to continuously visualize misconfigurations and vulnerabilities in their multi-cloud environment, improving the speed of risk comprehension and response.
Because detected risks and remediation methods are clearly presented in Japanese, sharing information with development and infrastructure departments became easier, reducing communication costs between departments. A system has been built where each department can autonomously proceed with risk response while keeping the CSIRT as the hub.
Furthermore, multi-layered verification in conjunction with AWS native features has provided certainty and peace of mind regarding security measures. In addition, by utilizing the information visualized by Cloudbase for monthly reports to management, they can regularly grasp and share the security status, strengthening communication with executives.
Future Outlook | Making Security the Foundation for Business Growth
Based on the idea that security does not halt business growth but is a foundation for driving it safely, they will continue to build a security structure capable of sustainable evolution in collaboration with 'Cloudbase'.