Content Area

Ensure Reliable Communications / items coveredCSR Priority Activity
Reinforcing Information Security

Policies and Concepts

The importance of information security grows each year as people seek to ensure the safety of Internet transactions and prevent leaks of confidential information. As an operator of telecommunications infrastructure, NTT Group is charged with the responsibility of combating the ever more sophisticated and increasing threats to information security in order to protect customers' information assets.

The NTT Group has positioned Global Cloud Services as the cornerstone of its business operations in the Medium-Term Management Strategy that we established in 2015, and we realize the need to provide an additional degree of security in managing customers' information assets through networks. It is no less important to prepare against sophisticated large-scale cyber attacks on major international events, and NTT Group is expected to demonstrate its true value in this area.

If there is a leakage of personal information or other confidential information or improper handling of such information, NTT Group's trustworthiness and corporate image could be damaged, resulting in negative impacts on our businesses, including loss of subscribers or access to designated competitive bidding.

As one of the key companies shouldering the information communication industry, NTT Group will contribute to the sound development and transformation of society while ensuring information security.

NTT Group's Information Security Policy

In order to continue supplying safe, secure services at all times and remain to be a company relied on by customers forever, NTT Group, as one of the responsible companies that shoulder the information communication industry, shall strive to maintain the security of information and contribute to the sound development of ubiquitous broadband society in accordance with the following policy.

With a strong recognition of the importance of information security in ubiquitous broadband society, the Group shall strive to create a safe, secure, convenient communication environment and maintain information security.
All the board members and employees of NTT Group shall fully recognize that protecting information is the base of the Group's business activities and an important social responsibility of any company, and the Group shall strictly observe the secrecy of communications and comply with the relevant laws and regulations, including the Personal Information Protection Act.
The Group shall reinforce its organization for maintaining information security, take thoroughgoing measures to prevent illegal access to information and loss, alteration, leak, etc. of information and implement activities necessary for protection of information, including thoroughgoing employee education and proper supervision of contractors, on a continual basis.

Organization for Implementation

NTT Group enforces information security management under the charge of the Chief Information Security Officer (CISO), and is thorough in its information security management. We have also established a Group CISO Committee, and formulate Group information security management strategies, plan and implement related measures, undertake human resources training, and otherwise engage in activities in collaboration with companies across the Group.

In particular, we are focusing on training security experts (see page 88) as the key to reinforcing security as well as organizing and pursuing educational programs throughout the Group. We are contributing to the provision of safe and secure services by developing technologies and services that ensure information security and by setting up NTT-CERT to implement preventive and follow-up support on security incidents, as components of the identification, defense, detection, response, and restoration measures necessary for multi-layered defense against cyber attacks.