Information Security

Information Security

Fiscal 2023 Objectives Fiscal 2023 Achievements Self-Evaluation Priority Objectives for Fiscal 2024
  • Pass the certification renewal screening for ISO 27001
  • Step up educational measures for employees as a way to deal with targeted email attacks, and expand education to more overseas affiliates
  • Maintained ISO 27001 certification (renewed June 17, 2023)
  • Improved the practicality of content of training for employees who did not take proper measures in response to targeted email attacks. Also expanded training to more overseas affiliates (fiscal 2023 results: 33 companies out of 40; up 21)
 ★★
  • Pass the recertification and transition screening for ISO 27001
  • Continue training and education on targeted email attacks (in Japan and overseas)
  • Add cybersecurity measures to IT general control requirements
  • Self-evaluation: ★★★ Achieved more than targeted / ★★ Achieved as targeted / ★ Achieved to some extent

Sharp is working to ensure information security by setting forth a Global Basic Policy on Information Security for the safe and appropriate management and use of information and information systems.

As part of its efforts to enhance information security, Sharp also acquired ISO 27001 certification in 2015 and has secured an appropriate information security management system. Sharp’s overseas bases (Sweden, Indonesia) have also acquired and maintain ISO 27001 certification.

Summary of ISO 27001 Certification Activities

Organization Sharp Corporation
Scope of Certification
  • The administration and operation of an affiliated web site.
  • The implementation of in-company information management.
Certification Number IS 635826
Certification Body BSI Group Japan K.K.
Initial Certification Date June 30, 2015
Related Information:

Information Security Measures

Sharp strives to raise security awareness with thorough dissemination of in-house information security rules; for example, through compliance-related training based on the Sharp Code of Conduct.

To focus on targeted email attacks, which are an increasingly serious and direct security risk for employees in Japan and overseas, Sharp is stepping up drills in which employees receive malicious mock emails.

In fiscal 2023, Sharp tested its response capabilities by having not only all employees at Sharp and its affiliates in Japan but also employees at overseas affiliates receive several types of malicious emails that mimicked real-life ones. Employees who did not deal with the email appropriately were given further guidance on the dangers of email attacks to raise their security awareness. We will continue to provide such training that mimics the latest email attack methods, as well as step up measures by continuing to expand training to more overseas affiliates to strengthen our global security.

Meanwhile, Sharp will continue to maintain and strengthen its security by stepping up activities. For example, to prevent external information leaks, Sharp checks the vulnerability of publicly accessible Sharp-related websites and puts in place measures to prevent hacking and the access of illicit websites.

In addition, the revised J-SOX* now includes a new statement about the importance of ensuring security for information systems in light of increasing cyber risks. Starting this fiscal year, Sharp will also strengthen its controls by adding cybersecurity measures to its IT general control requirements.

  • An internal control reporting system aimed at ensuring the reliability of financial reporting.