Executives & frontline staff, two 10-hour courses
Before asking “stop AI or get stopped,”implementdefense × offense in parallel.
KADOKAWA × BlackSuit, the 150GB Mexico government leak, Mini Shai-Hulud (CVE-2026-45321 / CVSS 9.6)—AI incidents have graduated from “someone else's problem.” At the same time, halting AI-driven new business is no longer a viable executive option. WARP SECURITY teaches executives and frontline staff in the same company through a 2-day program built on Zero Trust × the GINDMA 6-layer defense model × OWASP 2025-2026.
Fully aligned with OWASP, NIST SP 800-207, CISA ZTMM 2.0, ISO/IEC 27001, ISO/IEC 42001, SOC 2, CSA Agentic Trust Framework, and MITRE ATLAS
Breakout Time
Avg. 48 min / fastest 51 sec (CrowdStrike)
Companies hit
Past 12 months (JIPDEC 2026)
AI SOC MTTR
3 days → 16 min (NRI Secure case)
Security skills curated
We share a safe selection procedure
Incidents that have graduated from “someone else's problem,” and businesses you cannot stop
Since the June 2024 KADOKAWA × BlackSuit event, ransomware is no longer a distant threat. 2025-2026 is the acceleration year—and halting AI-driven new business is no longer an option for management.
$25.6M
Arup loss
Deepfake CFO video conference triggered 15 wire transfers (Jan 2024)
75%
Mexico government case
Claude executed 75% of remote commands (150GB leaked)
80-90%
Autonomous AI espionage
China state actor single-operation automation rate (Anthropic, Nov 2025)
CVSS 9.6
Mini Shai-Hulud
CVE-2026-45321, 170+ packages poisoned (May 2026)
KADOKAWA × BlackSuit
Ransomware × AI-era double extortion, weeks of business stoppage, compound executive impact
EchoLeak (CVE-2025-32711)
Zero-click email triggered Copilot to auto-exfiltrate secrets (CVSS 9.3)
OmniGPT 34M conversation leak
Aggregator compromise leaked credentials and attachments at scale
Cato Networks proof-of-concept
Modified Claude Skill used to deploy MedusaLocker
Close four gaps, simultaneously
Knowledge gap
Executives speak in concepts, frontline staff speak from gut feel, when discussing the latest threats
Language gap
Executives talk ROI, frontline talks usability, audit talks standard clauses—three sides cannot translate
First-response coordination gap
When an incident occurs, there's no shared criteria for who stops it and who escalates
Business vs. control gap
Executives say “ship AI products now,” security says “after controls catch up”—the debate stalls
Same company, same facts, same language.
Executives and frontline staff share the same incident scenarios and frameworks, so Monday's decisions align.
WARP SECURITY for Executives
10 hours (5h × 2 consecutive days)
対象 / Audience
CEO / COO / CFO / CISO / CIO / IT chiefs / corporate strategy leadership
Translate AI risks into management language. Take home decision frameworks for governance, regulation, and investment. Build the judgment axis to “accelerate AI business with controls,” not stop it.
- Score your defense × offense maturity across 24 items
- Map your Zero Trust Maturity Model current state
- ISO 27001 → ISO 42001 extension strategy
- Go/No-Go checklist of 10 items for business × controls
- Three boardroom slides completed on the spot
WARP SECURITY for Practitioners
10 hours (5h × 2 consecutive days)
対象 / Audience
Sales / consulting / PMO / developers / marketing / corporate / frontline leads
Self-execute prompt injections, classify business data as red / yellow / green, role-play the first 5 minutes of an incident. 65% hands-on, 35% lecture—built for “use it Monday.”
- Self-execute 5 categories of prompt injection
- Classify business data with the red / yellow / green system
- Run /security-review and Snyk MCP hands-on
- Drill “the first 5 minutes when something feels off”
- Safely curate from Anthropic's 754 community security skills
Five common foundations both courses share
To provide a translatable common language between executives and the frontline, both courses sit on the same five foundational materials.
Zero Trust foundation
NIST SP 800-207 / 800-207A, CISA Zero Trust Maturity Model 2.0, CSA Agentic Trust Framework (Feb 2026)
GINDMA — the 6-layer defense model
Governance / Identity / Network / Data / Model / Application—structured responsibility and controls
OWASP 2025-2026 framework set
Top10:2025 / LLM Top10:2025 / Agentic AI Top10:2026 / ASVS 5.0, covered horizontally
Prompt Injection 14-Control Matrix
9 attack families × 6 defense layers × Zero Trust principles × OWASP mappings, consolidated to one page
AI Incident Case Database
11 documented cases incl. KADOKAWA / Mexico government / Mini Shai-Hulud / EchoLeak / OmniGPT / Cato Networks / Cursor IDE
Standards & references
ISO/IEC 27001:2022 / 42001:2023 / SOC 2 TSC 2026 / AWS Agentic AI Security Scoping Matrix / MITRE ATT&CK · ATLAS · D3FEND
Full curriculum for both courses (10 hours each, 5h × 2 days)
Each course starts from its participants' lived reality and converges on shared facts and frameworks.
The attack reality, and the executive decision map
KADOKAWA × BlackSuit / Mini Shai-Hulud analysis → Zero Trust 3 questions → 6-layer × OWASP × ISMS Annex A × SOC 2 TSC mapping → “if ransom demanded today” sheet check
Drawing the management blueprint for defense × offense
ISO 27001 → ISO 42001 → AI SOC MTTR 3d→16min → AI-driven business design × security controls → tabletop with 12 decisions → 90/180/365-day roadmap → three boardroom slides on the spot
Experience the attack reality, hands-on
Self-execute prompt injection → OmniGPT leak / Cato Networks demo → translate Zero Trust to operational language → 6-layer model L4/L5/L6 responsibility → /security-review · /snyk-fix → classify data red/yellow/green
Daily rules and the moves when things go wrong
6-layer × PI 14 controls (personal) → spotting malicious Skills/MCP servers → PII masking exercise → first-5-minute role play → tabletop “suspicious PDF” → pair-pledge “one thing for next Monday”
8 take-homes (4 per course)
Executives: 24-item scorecard / 3 policy drafts / incident playbook / dual-axis roadmap ── Practitioners: 1-page rules / 14-item checklist / first-response playbook / official skill onboarding guide
Where we sit in the market
Sitting between executive short briefings and 5-day engineer-only programs. “2 days × specialized × tiered × common foundations” was an open gap in Japan.
| WARP SECURITY | Major SI exec training | Overseas specialist (5 days) | Literacy programs | |
|---|---|---|---|---|
| Audience | Executives & practitioners | Executives | Engineers | All employees |
| Duration | 2 days (5h×2, splittable) | 2-3 hours | 5 days | Half-day to e-learning |
| Common foundations | Zero Trust / GINDMA / OWASP / PI-14 / Case DB | Selective | OWASP / NIST | METI guidelines |
| Hands-on | Self-PI + /security-review + first-5-min | Discussion-led | Heavy technical | Lecture-led |
| Deliverables | Executives 4 + Practitioners 4 = 8 artifacts | Slides only | Materials only | Materials only |
| Indicative price (per company) | ¥1.0M – ¥1.8M | from ¥500K | from ¥1.3M per person | ¥10K – ¥250K per person |
Plans
Take executives or practitioners separately—or the full pack together. The full pack delivers the most value.
Executives
Executives & IT leadership
5-person pack from ¥1,000,000
期間: 10 hours (5h × 2 consecutive days)
対象: CEO/COO/CFO/CISO/CIO/Corporate strategy
- Day 1: Attack reality and the executive decision map
- Day 2: Drawing the defense × offense blueprint
- 4 take-homes (scorecard / 3 policies / incident PB / roadmap)
- Three boardroom slides completed on the spot
- Hand-off into AI SOC build support
- Certificate + 90-day recording access
Full Pack (per company)
5 execs + 20 practitioners — 25 seats (10% off)
Sum ¥2,000,000 → 10% off ¥1,800,000
期間: Executives 2 days + Practitioners 2 days
対象: Full stack: executives to engineers
- Both Executives and Practitioners courses delivered
- 8 take-homes (4 × 2 courses)
- Same incident, same frameworks shared
- Decision speed aligns from Monday on
- ISO 42001 roadmap quick check
- Priority WARP / ZEROCK consultation
Practitioners
All employees using AI at work
20-person pack from ¥1,000,000
期間: 10 hours (5h × 2 consecutive days)
対象: Sales / consulting / PMO / dev / marketing / corporate
- Day 1: Self-execute prompt injection
- Day 2: 14-control hands-on + first-5-minute drill
- 4 take-homes (1p rules / 14 check / first-PB / skill guide)
- Implement Claude Code /security-review
- Safely curate from 754 Anthropic skills
- Certificate + 90-day recording access
*Prices exclude tax. Custom pricing is available based on delivery format (in-person / online / hybrid), customization, and headcount.
Industry-specific customizations (finance, healthcare, public) are quoted individually.
Frequently Asked Questions
WARP NEXT focuses on “using AI well” for business productivity. WARP SECURITY is its defense × offense version: “use safely while shipping,” “accelerate the business while operating controls.” The 6-layer AI security model that started inside WARP has grown into a standalone deep specialist program.
Two days to answer “are we safe?” with evidence.
Defense × offense is a thing you implement, not a concept you discuss. WARP SECURITY is the only AI training that connects executive decisions with frontline behavior through the same shared facts.
Quote → contract → preparation → delivery → post-course follow-up, supported end to end.