Information Security
Basic ideas and policies
The Resonac Group has established information security rules to be applied across the company both in Japan and outside the country to maintain and improve its level of information security. We handle our own information assets and those entrusted to us by those outside the company in strict compliance with the rules under the leadership of the Chief Digital Officer (CDO), who is in charge of information security across the board. We thereby protect such information assets from various threats and treat them appropriately regarding information security.
Management system
We have a department devoted to information management and protection, have established an information security system to be operated organizationally on a company-wide basis, and have clarified the roles and responsibilities to be fulfilled under the system. Moreover, we regularly evaluate our information security management system and measures for continuous improvement so that we can respond to changes in the management environment and society at large and ensure compliance with various laws and regulations with regard to information security.
Security measures
We set our basic information security measures to protect the Group’s information assets from external threats, including using anti-virus software, conducting access control and limiting the use of external storage media, and have introduced these measures to our sites in Japan and abroad. We regularly monitor the implementation of these measures at the sites.
Employee education
We provide all employees with e-learning opportunities, including training with regard to targeted e-mail attacks, with a view toward helping them to increase their information security awareness and prepare against more skillful targeted attacks.
Management of outsourcing companies
Before outsourcing operations to other companies, we check their information security risk-related education, enlightenment and initiative levels to confirm that they are on par with the Resonac Group in terms of information security.