Fortience Consulting and TwoFive Partner to Jointly Provide Comprehensive DMARC Email Security Solutions
Fortience Consulting (an NTT Data Group company) and TwoFive have launched a new DMARC solution as of April 27, 2026. The partnership offers end-to-end support, covering everything from system implementation to organizational governance and continuous policy enforcement to combat email spoofing.
📋 Article Processing Timeline
- 📰 Published: April 27, 2026 at 19:00
- 🔍 Collected: April 27, 2026 at 10:31
- 🤖 AI Analyzed: April 28, 2026 at 02:30 (15h 59m after Collected)
Fortience Consulting Co., Ltd. (formerly QUNIE Corporation, Head Office: Chiyoda-ku, Tokyo, President: Shigeki Yamaguchi), an NTT Data Group company, and TwoFive Inc. (Head Office: Chuo-ku, Tokyo, CEO: Nobuhiro Suemasa), a leading provider of messaging security, have entered into a collaboration in the field of counteracting email spoofing. They began offering a new DMARC solution on April 27, 2026.
This solution provides integrated support for the implementation and visualization of DMARC-related systems, the design and reinforcement of optimal DMARC policies aligned with client operations and regulations, and the establishment and implementation of email security governance.
Through this, it achieves advanced email security tailored to each company's environment and operational reality in response to the increasingly sophisticated threat of email spoofing.
[The Reality of Email Spoofing]
In recent years, the role of email has shifted from a mere communication tool to a function for notifications, reports, and identity verification. However, email communication continues, and it has long been used in cybercrime methods. Email-related crimes ranked in the 'Information Security 10 Major Threats 2025.'
Furthermore, reports from the Council of Anti-Phishing Japan indicate an upward trend in spoofing emails, making email security measures essential for every enterprise.
Neglecting spoofed emails (emails pretending to be from a company) can give the impression that the company is complicit in cybercrimes such as fraudulent transfers or phishing scams. This carries significant business risks, including brand damage leading to suspension of business by partners or customers, loss of sales opportunities, and operational delays due to internal incident response.
[DMARC and the Difficulty of Its Operation]
DMARC (Domain-based Message Authentication, Reporting, and Conformance) is an international authentication technology used to verify the legitimacy of a company's sender domain and prevent spoofing. After implementing DMARC, companies can strengthen their defenses by implementing technical measures (such as SPF/DKIM) on their email sending systems and servers based on DMARC reports, and by tightening DMARC policies.
While strengthening DMARC policies is required to prevent spoofing, many companies face complex technical and organizational challenges, such as:
- Lacking specialized knowledge to analyze DMARC reports (RUA/RUF).
- Difficulty in understanding advanced email and DNS technical concepts.
- Multiple organizations, such as group companies and outsourcing partners, using the same domain.
- Ambiguity in which department is responsible, leading to personalized or 'black-boxed' operations.
- Fear of operational impact from policy changes, hindering enforcement.
To conduct smooth DMARC operations, design that includes governance (organization, rules, and structure) in addition to technical aspects is indispensable.
[Features of This Solution]
This solution helps reform the client's entire organization to enable smooth DMARC operations by merging high-level technical expertise in DMARC with security consulting insights. Specific support and procedures are designed according to each company's DMARC operational status and response level to achieve optimal security reinforcement.
■ Simultaneous Achievement of DMARC Policy Reinforcement and Governance Establishment
To implement DMARC and strengthen policies, technical issues must be identified and resolved. To do so, governance must be established. Many companies fail at governance and give up on policy reinforcement. This solution builds governance across departments and group companies while gradually strengthening DMARC policies.
■ Visualizing Complex Domain Usage Environments and Building Sustainable Operational Structures
To prevent spoofing, continuous operation after policy reinforcement is vital. This solution visualizes domain usage and risks through detailed DMARC analysis reports.
This solution provides integrated support for the implementation and visualization of DMARC-related systems, the design and reinforcement of optimal DMARC policies aligned with client operations and regulations, and the establishment and implementation of email security governance.
Through this, it achieves advanced email security tailored to each company's environment and operational reality in response to the increasingly sophisticated threat of email spoofing.
[The Reality of Email Spoofing]
In recent years, the role of email has shifted from a mere communication tool to a function for notifications, reports, and identity verification. However, email communication continues, and it has long been used in cybercrime methods. Email-related crimes ranked in the 'Information Security 10 Major Threats 2025.'
Furthermore, reports from the Council of Anti-Phishing Japan indicate an upward trend in spoofing emails, making email security measures essential for every enterprise.
Neglecting spoofed emails (emails pretending to be from a company) can give the impression that the company is complicit in cybercrimes such as fraudulent transfers or phishing scams. This carries significant business risks, including brand damage leading to suspension of business by partners or customers, loss of sales opportunities, and operational delays due to internal incident response.
[DMARC and the Difficulty of Its Operation]
DMARC (Domain-based Message Authentication, Reporting, and Conformance) is an international authentication technology used to verify the legitimacy of a company's sender domain and prevent spoofing. After implementing DMARC, companies can strengthen their defenses by implementing technical measures (such as SPF/DKIM) on their email sending systems and servers based on DMARC reports, and by tightening DMARC policies.
While strengthening DMARC policies is required to prevent spoofing, many companies face complex technical and organizational challenges, such as:
- Lacking specialized knowledge to analyze DMARC reports (RUA/RUF).
- Difficulty in understanding advanced email and DNS technical concepts.
- Multiple organizations, such as group companies and outsourcing partners, using the same domain.
- Ambiguity in which department is responsible, leading to personalized or 'black-boxed' operations.
- Fear of operational impact from policy changes, hindering enforcement.
To conduct smooth DMARC operations, design that includes governance (organization, rules, and structure) in addition to technical aspects is indispensable.
[Features of This Solution]
This solution helps reform the client's entire organization to enable smooth DMARC operations by merging high-level technical expertise in DMARC with security consulting insights. Specific support and procedures are designed according to each company's DMARC operational status and response level to achieve optimal security reinforcement.
■ Simultaneous Achievement of DMARC Policy Reinforcement and Governance Establishment
To implement DMARC and strengthen policies, technical issues must be identified and resolved. To do so, governance must be established. Many companies fail at governance and give up on policy reinforcement. This solution builds governance across departments and group companies while gradually strengthening DMARC policies.
■ Visualizing Complex Domain Usage Environments and Building Sustainable Operational Structures
To prevent spoofing, continuous operation after policy reinforcement is vital. This solution visualizes domain usage and risks through detailed DMARC analysis reports.