Enhancement of Security Monitoring and Analysis Services and Launch of Incident Response Services

NTT Business Solutions Corporation (Headquarters: Kita-ku, Osaka; President and CEO: Hidenori Kinokami; hereinafter referred to as NTT Business Solutions) has been implementing the "Cybersecurity Primary Care" initiative, which incorporates a medical approach to cybersecurity to support municipalities and companies in addressing their challenges, acting as their "security primary care physician." To further evolve this initiative, in addition to further strengthening our security monitoring and analysis services during normal times, we will launch an incident response service on Tuesday, March 31, 2026. This service will enable swift and accurate responses in the event of a security incident, in collaboration with security vendors. This will realize a supportive security operation that provides consistent support from daily operations to incident detection, initial response, recovery support, and recurrence prevention.

※1 "Cybersecurity Primary Care" HP: https://www.nttbizsol.jp/service/cyber-security/ ※2 Regarding the launch of the "Cybersecurity Primary Care" initiative to raise cybersecurity awareness in local communities (Press Release on May 14, 2025) https://www.ntt-west.co.jp/news/2505/250514a.html

1. Background and Objectives In recent years, cyberattacks have become more sophisticated and insidious. In the event of an incident, not only business operations may be suspended and information leaked, but corporate credibility and brand value can be severely impacted. Cybersecurity has become a critical management issue that affects business continuity. In this environment, it is essential to establish a "continuous security monitoring and analysis system from normal times" to detect signs of threats early and prevent the spread of damage. However, it is difficult to prevent all risks, and preparations for incident occurrence are required. As a "security primary care physician," NTT Business Solutions aims to provide a system that can offer consistent support regardless of whether it is a normal time or an emergency, thereby contributing to highly effective security measures that protect customers' corporate value and business continuity.

2. Overview The details of the service enhancement and the newly launched services are as follows:

(1) Enhancement of Security Monitoring and Analysis Service (CPC SOC) We will strengthen functions centered on the following to realize an SOC service that provides accurate detection based on advanced monitoring and analysis.

① High-precision Threat Detection through Correlation Analysis Using Multiple Logs By combining multiple log information for correlation analysis, we can accurately detect signs of threats that are difficult to identify with a single alert. This suppresses false positives while accurately extracting events that require action.

② Advanced Analysis Functions Using Proprietary SIEM Analysis Rules and Security Analysts Through proprietary analysis rules and advanced analysis by security analysts, we can detect various types of cyberattacks and incident occurrences.

③ "Visible" Security Operations via a Customer-Exclusive Portal Site The detection status and