Press releases

Launch of Cyber Intelligence Service

Maximizing the intelligence collected by Deloitte global network to protect against cyber threats

Deloitte Tohmatsu Risk Services Co., Ltd. launches Cyber Intelligence Service, a 24-hour 365-day security threat analysis service, on September 28, 2015. DTRS plans to increase the number of specialists capable of providing cyber intelligence service to at least 30 by 2020.

Explore Content

September 2, 2015

Deloitte Tohmatsu Risk Services Co., Ltd. launches Cyber Intelligence Service, a 24-hour 365-day security threat analysis service, on September 28, 2015. DTRS plans to increase the number of specialists capable of providing cyber intelligence service to at least 30 by 2020.


The number of cyber attacks targeted at companies has been increasing in recent years, causing serious damage. Cyber attacks aim to steal or destroy valuable information assets such as technical information, production information, and personal information and to harm corporate reputations. Thus, taking appropriate measures against such threats is an extremely important issue for companies. Since cyber attackers use unknown malware, use of only conventional preventive measures is often insufficient for completely protecting against their attacks. To safeguard customers from cyber attacks, DTRS launches the Cyber Intelligence Service 24-hour 365-day security threat analysis service.

 2.Service details 

Deloitte Cyber Intelligence Service consists of two independent service operations: Threat Intelligence and Analytics and Threat and Security Monitoring. The Threat Intelligence and Analytics provides useful information to customers based on the results of analysis of information collected by Deloitte global network of professionals. The Threat and Security Monitoring analyzes various logs of customers' network and system activities, then detects threats and proposes countermeasures.

(1)Threat Intelligence and Analytics (TIA)
This service provides intelligence1 suitable for each customer’s business environment.


  • Distribution of information on cyber threats in view of the customer's industry characteristics. More detailed analysis service is optionally available.
  • Provision of intelligence information (such as IP addresses, domain names, and IOC2) that can be incorporated into the Security Information and Event Management (SIEM) products of the customer, in order to enhance the new threat detection accuracy.
  • Malware sample analysis (reverse engineering) service is optionally available.

1  Intelligence: Information useful to customers based on the analysis results of threat information such as the information of malware and their attack methods collected by Deloitte global network and ranking of their potential maliciousness
2  IOC: Indicators of compromise, such as signs and signatures of cyber attacks

(2)Threat and Security Monitoring (TSM)
This service provides security threat analysis 24-7. It is an advanced analysis service performed based on the TIA and in consideration of the correlation between customer-/industry-specific business risks and cyber risks.


  • Utilization of the most suitable security solutions that do not rely on specific vendors or technologies.
  • Highly knowledgeable analysts analyze security threats and provide advice 24-7.
  • Periodic reporting and provision of support in the event of incident occurrence by dedicated incident coordinators.

■Two service menus
Deloitte Cyber Intelligence Service is available in two types. The standard service does not require the customer to add any new security assets. The premium service is implemented in the customer's on-premise environment. The standard service is scheduled to start in September 28, 2015, and the premium service will be available after April 2016.

  • Standard service
    The standard service collects and analyzes logs of not only external network gateway devices such as firewalls and intrusion detection systems (IDS) but also various devices used by the customer. It is capable of detecting cyber threats that cannot be discovered by conventional approaches, and offers information vital for responding to cyber threats.
  • Premium service
    By installing a SIEM product in the customer's system (on-premise environment), this service analyzes logs that are difficult to take out of the customer's system. It also detects cyber attacks and internal fraud activities that are specific to individual customers. Furthermore, should an incident occur, it provides full support in collaboration with CSIRT.

3.  Collaboration with the Cyber Intelligence Centers around the world 

The Cyber Intelligence Service utilizes the intelligence collected by Deloitte Cyber Intelligence Centers (CICs) located around the world to respond to cyber attacks launched on customers. The CICs collect and analyze the information of region-specific cyber attacks, and provide intelligence necessary for taking measures against them. There are CICs in more than 20 cities around the world, including those already in operation in the United States, Canada, Spain, and India and those under preparation or under planning (as of September 2, 2015). The Cyber Intelligence Service provides full-fledged support to globally operating customers by collaborating seamlessly with the CICs around the world.


  • Provision of advanced intelligence service based on the information collected and analyzed by Deloitte global network
  • 24-hour 365-day security threat analysis using the most advanced technologies
  • Global response in collaboration with Deloitte's CICs located around the world


Kaori Arai
Corporate Communications
Deloitte Tohmatsu LLC
+81 3 (6720) 8090

Please click here to download the attached full news release.

(188KB, PDF)

Deloitte Tohmatsu Group (Deloitte Japan) is the name of the Japan member firm group of Deloitte Touche Tohmatsu Limited (DTTL), a UK private company limited by guarantee, which includes Deloitte Touche Tohmatsu LLC, Deloitte Tohmatsu Consulting LLC, Deloitte Tohmatsu Financial Advisory LLC, Deloitte Tohmatsu Tax Co., DT Legal Japan, and all of their respective subsidiaries and affiliates. Deloitte Tohmatsu Group (Deloitte Japan) is among the nation's leading professional services firms and each entity in Deloitte Tohmatsu Group (Deloitte Japan) provides services in accordance with applicable laws and regulations. The services include audit, tax, legal, consulting, and financial advisory services which are delivered to many clients including multinational enterprises and major Japanese business entities through over 8,500 professionals in nearly 40 cities throughout Japan. For more information, please visit the Deloitte Tohmatsu Group (Deloitte Japan)’s website at

Deloitte provides audit, consulting, financial advisory, risk management, tax and related services to public and private clients spanning multiple industries. With a globally connected network of member firms in more than 150 countries and territories, Deloitte brings world-class capabilities and high-quality service to clients, delivering the insights they need to address their most complex business challenges. Deloitte’s more than 220,000 professionals are committed to making an impact that matters. 

Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee (“DTTL”), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as “Deloitte Global”) does not provide services to clients. Please see for a more detailed description of DTTL and its member firms.

Explore Content

Did you find this useful?