©2025 Akamai Technologies
In-house production systems support the rapid growth of comprehensive real estate companies
Open House Group is a comprehensive real estate company primarily engaged in business activities related to single-family homes in central Tokyo, in addition to a diverse range of business activities including the condominium market, income-generating real estate, and the US real estate market. After going public in 2013, the company has achieved record sales for the 11th year in a row and stands out as a rapidly growing business after having exceeded JPY 1 trillion in sales in 2023.
This rapid growth is supported by solid IT infrastructure. Based on its strategy of generally bringing IT in-house, the company has responded flexibly and rapidly to business needs and now has more than 100 systems and 150+ applications.
Recognizing the need for lateral movement countermeasures
As the company grows rapidly, the number of systems and applications increases, the complexity of the IT environment increases, and more vulnerabilities emerge in their security measures. Kosei Arai of the Security Department, Infrastructure Group, Information Systems Division at Open House Group, explains:
“We believe that security measures are an essential social responsibility in order to ensure that our customers can buy and sell property with peace of mind and to maintain relationships with our business partners. In addition, if damage occurs due to ransomware or other factors, we will lose much of our advantageous business speed, causing inconvenience for our stakeholders. So we invested heavily in security, but we still faced network and security challenges.”
Kazutaka Ikeda, of the Infrastructure Department, Infrastructure Group, Information Systems Division at Open House Group, recalls:
“We have a team of as many as 60 people managing a large number of systems and applications. However, some tasks such as understanding which systems are connected to each other and checking for any anomalies in communications was something for which we tended to rely on each individual team member, so this had become highly dependent on individual personnel.
“The problem with monitoring the system was that, due to the large number of unorganized logs, forensic investigations required more work than expected. We were also troubled by lack of consideration in terms of security operations and insufficient governance. One of the main concerns was countering the lateral movement.
“While we focused on perimeter-based security such as WAF and UTM against external threats, we had insufficient postintrusion lateral movement countermeasures in our internal network."
Adopting Akamai Guardicore Segmentation for its functionality and for Akamai’s reliability
When considering how to address these challenges, especially lateral movement, the Open House Group focused their attention on Akamai Guardicore Segmentation and decided to adopt it.
Arai points out two main reasons for the decision in terms of functionality:
“One of the agent’s most impressive features when compared to other microsegmentation tools is that it allows us to look more deeply into how the process works in practice. Given the challenges around maintaining this mix of legacy operating systems, we wanted to raise the level of our security. So, it was crucial that the agent was also able to support even the oldest of the operating systems we were running. Another factor was its configuration that has a relatively high capacity for communications between servers and allows us to have greater control over those communications.”
The selection was also driven by the high level of confidence they have in Akamai’s solutions. “We again turned to Akamai because we had already implemented their CDN and WAF with superb results,” Arai explains.
Overcoming security challenges with unexpected results
“All communications are visualized on a process-by-process basis,” says Arai, referring to the most significant effect of implementing Akamai Guardicore Segmentation. “Whereas we used to depend on individual personnel in order to understand how our systems shared information with others, this tool now allows other staff members to understand this in a visual manner,” he explains.
Open House Group has also achieved significant improvements in the efficiency of forensic investigations that previously took a lot of time. “With its intuitive GUI operation, Akamai Guardicore Segmentation allows us to find the logs required for our decisions and view them on a per-process basis. Investigations can be easily conducted by narrowing down the search by source, port, time zone, etc.,” Ikeda explains.
“This helps us to detect communications with undesirable IPs and deal with them on a daily basis,” adds Arai. In particular, it allowed the company to resolve an issue with the membership registration page of their property purchase site. When sending automatic emails based on the email address entered during registration, the DNS security function blocks communication to suspicious domains in advance, preventing accidental connections to mail servers that may belong to attackers. This prevents sales activities from unintentionally sending emails to suspicious servers, leading to a significant reduction in security risks.
The lack of consideration on the operations side has been greatly improved by the fact that communications can now be understood visually. In addition, the “Hits” item in the list of policy rules helps to address misconfigurations and security holes. It indicates the number of times that communications matching those rules have occurred. If it’s zero, it can be determined as unnecessary, so deleting it can close a security hole.
Akamai Guardicore Segmentation also contributes to their ongoing Zero Trust initiative. The logs can be output in CSV format, allowing users to examine the IP ranges and ports of communications and set strict rules to allow only those internal communications that are really necessary. In addition, microsegmentation’s per-process control makes it possible to place a “gate number” on the server.
The implementation of Akamai Guardicore Segmentation improved security, but it also provided other unexpected benefits.
“When moving from on-premises to the cloud, we stop the old environment’s servers and check the status of our communications to ensure there are no issues, and now we can do this more easily with communication visualization. Also, thanks to the intuitive method of checking the map and seeing that regions are not linked if there are no communication arrows showing, we can now see at a glance which devices are not connected to the ServiceNow or Zabbix services we are using,” explains Ikeda.
Akamai Guardicore Segmentation protects against attacks as the “last line of defense” and the “final barrier”
Ikeda values Akamai Guardicore Segmentation, describing it as a “last line of defense” and adding that “it’s a staunch ally that not only enhances security but also streamlines our daily tasks.” As for the future, he says, “We are currently only controlling inbound traffic, but going forward we also want to implement process-specific and outbound traffic controls to block any unnecessary gaps.”
Arai goes on to describe it as a “final barrier,” with everyone agreeing that Akamai Guardicore Segmentation brings value.
“The first barrier is the data center firewall, the second barrier is the EDR, and the final barrier is the Akamai Guardicore Segmentation microsegmentation solution. We intend to robustly defend against external and internal threats using these three barriers,” says Arai.
“We are determined to continually strengthen our security going forward by being proactive in the threat hunting field and staying ahead of attackers through our partnership with Akamai,” Arai adds.
About Open House Group
Open House Group’s business is focused on single-family homes, condominiums, income-generating real estate, and U.S. real estate while offering various services related to housing and lifestyle. In addition to the Greater Tokyo Metropolitan area in which it was founded, the company has expanded to cover the Nagoya, Kansai, and Fukuoka regions. In recent years, it has also focused its efforts on joint regional community development and environmental conservation activities. Since its founding in 1997, its single-family homes business has had an integrated manufacturing and sales system, covering everything from land acquisition through to construction and sales, in order to provide affordable homes in convenient locations.
About Akamai
Akamai is the cybersecurity and cloud computing company that powers and protects business online. Our market-leading security solutions, superior threat intelligence, and global operations team provide defense in depth to safeguard enterprise data and applications everywhere. Akamai’s full-stack cloud computing solutions deliver performance and affordability on the world’s most distributed platform. Global enterprises trust Akamai to provide the industry-leading reliability, scale, and expertise they need to grow their business with confidence. Learn more at akamai.com and akamai.com/blog, or follow Akamai Technologies on X and LinkedIn.