SII began using information and communications technology (ICT) to further enhance the technologies of “SYO”ism that it has developed over the years. We also run many information systems to grapple with the rapidly-changing business environment.
While digital technology is evolving in recent years, the threats, such as information leaks due to cyber attacks on the ICT systems that support businesses and fraud using business email, are becoming more widespread and more serious.
SII continues to review and implement information security measures as a key management responsibility in order to protect and maintain the ICT system as an important infrastructure.
To ensure information security, SII employees have been working as a team under a promotion framework consisting of senior management in chief executive roles based on internal regulations and various guidelines.
Information assets are evaluated and classified based on confidentiality, completeness, and availability to clarify security risks and take the necessary steps to maintain these information assets.
In addition, we are working to create a safe and stable environment by ensuring that all employees are fully aware of the importance of information security and the specific items to be observed, as well as conducting regular education and training to improve their information security literacy.
- Develop manuals for security incidents.
- Conduct training that assumes targeted e-mail attacks.
- Strengthen and review Internet security measures.
- Strengthen account authentication (multi-factor authentication).
In addition to the information system-related measures, SII has established the Personal Information Protection Policy and has been putting in place other internal rules, including the "SII Group Personal Information Protection Basic Regulation." In order to uproot personal information loss or leakage due to negligence, we continually provide education programs to each employee.