Information Security

Basic Policy

Kanto Denka Kogyo Group complies with laws, regulations, and internal rules to properly manage the information about customers and our group that we handle in our corporate activities.
In particular, we recognize that dealing with risks such as information leaks and tampering caused by information systems is one of the most important management issues in protecting information assets from all kinds of threats.
In order to protect information assets from various threats, we strive to raise information security awareness among all directors and employees, implement multifaceted measures to prevent information security incidents, and continuously enhance information security.

Systems

The Information Security Sectional Meeting is established under the Compliance and Risk Management Committee, and the Kanto Denka CSIRT systematically promotes the understanding and analysis of the information security risks of the entire Kanto Denka Kogyo Group, the study and implementation of continuous and systematic risk reduction measures, and the analysis of their effectiveness.
For external threats, the SOC, which includes a security vendor, takes the lead in constantly monitoring new threats, and the Kanto Denka Kogyo CSIRT implements appropriate countermeasures promptly.

  • CSIRT: Computer Security Incident Response Team. A specialized organization whose main responsibility is responding to information security-related incidents (accidents).
  • SOC: Security Operation Center. A specialized organization or team that monitors corporate and organizational networks and systems, detects and analyzes cyberattacks, and provides advice on response measures.

Initiatives

The Group is striving to thoroughly manage information by means of both hard and soft initiatives.

Technological and Institutional Initiatives

We prevent unauthorized access to confidential information by setting access restrictions, establish a system to prevent unauthorized removal of information, develop internal rules for information security (the Information Security Basic Policy, Information Security Guidelines, Internal Information Management Rules, etc.), and conduct regular monitoring based on these rules.
In order to protect the Kanto Denka Kogyo Group’s information assets from external cyber attacks, we are continuously working to build and strengthen a multi-layered defense system to deter unauthorized intrusion, and to build and strengthen a system for early detection and initial response to unauthorized intrusion (such as deploying EDR to all Group companies both in Japan and overseas).

  • EDR: Endpoint Detection & Response. A security measure that detects and responds to threats that could not be prevented through behavior monitoring of devices, rather than preventing attacks and intrusions to devices.

Education and Training

To raise the awareness of information security among all directors and employees of the Kanto Denka Kogyo Group, and to respond to increasingly sophisticated targeted attacks, we will continue to conduct targeted attack email training, group training, and in-house training using web conference systems.