Core concept
The UNISOL Group has established an Information Security Policy and related regulations as a code of conduct for protecting information assets and as guidelines for implementing security measures. We enforce access controls, maintain backup systems, and centrally manage networks, IT assets, and user identities to ensure appropriate security and a framework that can flexibly adapt to changes in our business and organization.
In addition, we are strengthening our system for internal and external access control to avoid computer viruses and other cyber-attacks and prevent leaks or unauthorized alteration of confidential information. At the same time, we are implementing technological measures, such as creating back-up systems and shifting to high-performance devices, as well as striving to enhance our information security in response to diversification of the environments in which our information systems are used (e.g., telework). Specifically, our Corporate Strategy Unit’s IT Planning Division, with support from other departments, carries out centralized management of networks, IT assets, and user identities, and aims to build security infrastructure able to adapt to changes to our business or organization. In addition, we plan to increase our investment in security and further enhance our information security management to allow prompt detection and resolution of any security incidents.
Information security training and drills
The UNISOL Group has created various regulations for information security management and has taken measures against the risk of system failures or information leaks due to cyber-attacks. The Group is working to improve employees’ knowledge of information security by conducting e-learning on security and regular drills on email attacks.
Major initiatives in FY2025
- Introduced BIMI
- Conduct training on targeted e-mail attacks for domestic consolidated subsidiaries
- Continued security e-learning* (attendance rate: 100%)
*For employees of domestic consolidated subsidiaries who use computers for work. A general awareness notice was issued to all other employees by their managers.
Initiatives within our IoT Solution Business
Our IoT solution business (Security Design Inc.) has created an information security management system (ISMS) compliant with ISO/IEC 27001:2022 (national variant: JIS Q27001:2023). Using this system, we work to protect both our customers’ and our own information assets, prevent security incidents, and continually improve our information security.