Risk Management
As a company responsible for supplying products and goods that are widely used throughout society, we will act with a social mission of providing a safe and stable supply of such products and goods. In the unlikely event that a risk materializes, we will work to eliminate or mitigate factors that could cause damage to various stakeholders including society, local communities, shareholders, customers, suppliers and employees. SAKATA INX will strive to ensure business continuity and stable development through the implementation of risk management.
Risk Management Structure
Our Sustainability Committee is chaired by the Representative Director, President & CEO and consists of all of its directors. It determines policies, targets, and plans regarding ESG activities, including information security matters, and it approves the action policies, targets and plans of its subordinate committees. The goal of the Environmental Management and Information Security Committee is to implement information security measures. Subordinate to the Sustainability Committee, it is chaired by a director and composed of multiple directors and Executive Officers. The Environmental Management and Information Security Committee implements measures to maintain and manage information assets, monitors the status of information security within the group, and makes improvements as necessary in accordance with the Basic Policy on Information Security. The Environmental Management and Information Security Committee reports the results of its deliberations and the decisions it has made to the Sustainability Committee every six months (twice a year). We also have external organizations assess our security measures and conduct vulnerability assessments, and we make improvements in response to the results of these activities.
Business Continuity Plan (BCP)
We have created a Business Continuity Plan as a guide for actions that is prompt and appropriate depending on the situation in the event of a crisis that could have a serious impact on business. In order to enhance the effectiveness of the plan, we will continue to revise it when necessary as we implement the PDCA cycle in our business continuity management system (BCMS). Through this initiative, we will work to strengthen our corporate structure.
Risk Management
In the event of a state of emergency, we shall place the highest priority on safety, and in order to ensure business continuity, all directors and employees shall work together to minimize losses, recover from damage and prevent reoccurrence to deal with and contain the crisis. It is also always important to be aware of the possibility of risk even in normal times, and to have a system in place to prepare for the materialization of risk. SAKATA INX has preparations for the materialization of risk based on the Risk Management Regulations and State of Emergency Management Regulations.
Information Security
The R&D Management Department properly manages intellectual property rights and other confidential corporate information, and the Information Systems Division takes rigorous measures to prevent information leaks. It include antivirus measures and restrictions on access to our internal network. We also raise awareness among employees regarding information leaks through measures such as training about targeted email attacks for randomly selected employees, and in doing so, we ensure an awareness of the importance of information security.
Information Security Management Structure
Our Sustainability Committee is chaired by the Representative Director, President & CEO and consists of all of its directors. It determines policies, targets, and plans regarding ESG activities, including information security matters, and it approves the action policies, targets and plans of its subordinate committees. The goal of the Environmental Management and Information Security Committee is to implement information security measures. Subordinate to the Sustainability Committee, it is chaired by a director and composed of multiple directors and Executive Officers. The Environmental Management and Information Security Committee implements measures to maintain and manage information assets, monitors the status of information security within the group, and makes improvements as necessary in accordance with the Basic Policy on Information Security. The Environmental Management and Information Security Committee reports the results of its deliberations and the decisions it has made to the Sustainability Committee every six months (twice a year). We also have external organizations assess our security measures and conduct vulnerability assessments, and we make improvements in response to the results of these activities.
Response to information security incidents
We have established a Computer Security Incident Response Team (CSIRT) for handling information security-related incidents and attacks which threaten or may threaten the confidentiality, completeness, and availability of information assets of the company or its organizations, such as the unauthorized access of systems, the leakage, falsification, or destruction of data or the suspension of services. The Executive Officer in charge of the Information Systems Div. is the supervisory manager of the CSIRT, and the members of the team are relevant people from the Information Systems Div. In the event of an information security incident, the CSIRT determines the scope of its impact based on the severity of the incident and in light of its impact on customers, business partners, shareholders, employees, and other stakeholders and on business continuity. It established a response system in line with the severity of the incident and acts following the Emergency Response Guidelines. We classify incidents as data leakage, data falsification, data destruction or other incidents, and we specify methods for handling each type of incident. The incident-handling procedures begin with confirming the incident has occurred and the initial response, which is followed by detailed investigation and efforts to recover from the incident and minimize damage, and then by the implementation of recurrence prevention measures. We provide training on response activities in line with the above procedures every six months (twice a year).
About Our Intellectual Property Strategy
We make efforts, as a member of society, to contribute to the overall development of society by actively creating, utilizing and protecting intellectual property as a means to secure competitiveness and to enhance corporate values.