Launch of "RiskLoom™," an AI-Powered Security Policy Document Diagnostic Service

Segue Security Co., Ltd. (Headquarters: Chuo-ku, Tokyo; Representative Director and President: Hideaki Kogawa; hereinafter "Segue Security") is pleased to announce the launch of its AI-powered security policy document diagnostic service, "RiskLoom™," starting in April 2026. ■ Background In recent years, cybersecurity risks surrounding enterprises have become increasingly sophisticated and complex. To address this, various ministries and public organizations have issued security guidelines that stipulate the security standards that companies and organizations must meet. Many companies and organizations work on examining security policies and implementing countermeasures while referring to the guidelines they must protect, and they organize the details into their own security policies. However, the task of verifying whether countermeasures are properly adapted to these guidelines without omissions and maintaining a continuous level of security often places a heavy burden on organizations with limited dedicated security personnel, leading to responses that rely on the experience and interpretation of the individuals in charge. As a result, a challenge has emerged in that it is difficult to objectively and continuously grasp the status of compliance with guidelines. Furthermore, in the field of consulting and security services that support such operations, as cases of guideline compliance increase, ensuring the quality reproducibility and accountability of document review work has become a critical issue. Thus, the fact that the document review work itself—which supports guideline compliance—is structurally prone to becoming overly dependent on specific individuals and difficult to scale, is a common challenge for both general enterprises (business companies) and supporting service providers. ■ Service Overview RiskLoom is a security policy document diagnostic service (patent pending) designed for general enterprises (business companies) and consulting/security support providers. Users simply upload document files such as security policies and procedure manuals, and the AI analyzes and visualizes the compliance status with various guidelines as well as potential risks. Supported guidelines include global standards such as ISMS and CIS Controls, as well as industry-specific guidelines issued by various ministries for financial institutions, local governments, and medical institutions. Furthermore, the AI has incorporated the latest draft evaluation criteria for the "Countermeasure Evaluation System for Supply Chain Strengthening," which the Ministry of Economy, Trade and Industry aims to put into operation in March 2027. Therefore, it can also be used for self-inspection and advance preparation of document organization for future compliance with this evaluation system. For general companies, as a tool to support in-house guideline compliance and self-inspection, it systematically organizes document deficiencies and check points, enabling the visualization of the compliance status. In addition, in the field of consulting and security support, it serves as an auxiliary foundation for document review work, supporting judgment and explanation, and contributing to the improvement of quality reproducibility in service delivery. ■ Service Features ・Document assessment based on guideline structures Organizes the correspondence between documents and requirements based on the composition of various guidelines. ・AI-powered document analysis considering context Extracts relevant sections and potential deficiencies while accounting for variations in expression. ・Visualization of compliance status and check points Organizes information so that even general enterprises can objectively grasp their own compliance status. ・Standardization of review work and improvement of accountability Supplements reviews and explanations by consultants or support staff by organizing and presenting the basis for judgments. ■ Endorsement Regarding this release, we have received the following endorsement from Global Security Experts Inc., which has a rich track record in the field of security consulting: "In the process of providing various consulting services, we believe that reviewing a client's entire set of documents and ensuring the quality of gap analysis against periodically updated standards is a crucial element. We evaluate RiskLoom as a tool that provides a useful approach to complement a consultant's perspective, contributing to the further advancement of service quality based on our own knowledge and know-how. We have high expectations for the utilization of RiskLoom." Global Security Experts Inc. Cyber Security Business Division, Consulting Department Executive Officer, General Manager, Naomi Kuratani ■ Future Outlook Through the provision of RiskLoom, Segue Security aims to help eliminate reliance on specific individuals in guideline compliance work and standardize quality. Furthermore, we are committed to building a foundation that allows companies and organizations to objectively understand their own security status and continue to improve it. By continuing to expand the supported guidelines and functions, we aim to contribute to raising the overall security level not only for individual companies but also throughout supply chains and industries, ultimately achieving a "safe digital society, everywhere." RiskLoom Website: http://riskloom.jp Segue Security Co., Ltd. Website: https://segue-sec.co.jp/ Homepage Contact Form: https://riskloom.jp/contact/