Information Security

Information Security

Fiscal 2022 Objectives Fiscal 2022 Achievements Self-Evaluation Priority Objectives for Fiscal 2023
  • Pass the certification renewal screening for ISO 27001
  • To raise employee awareness of information security, reinforce education for employees who inadvertently opened malicious emails sent as part of a previous training exercise. Also expand the number of overseas bases holding training on targeted email attacks
  • Maintained ISO 27001 certification (renewed June 30, 2022)
  • Improved the practicality of content of training for employees who did not take proper measures in response to targeted email attacks. Also expanded training to more overseas affiliates (12 companies)
★★
  • Pass the certification renewal screening for ISO 27001
  • Step up educational measures for employees as a way to deal with targeted email attacks, and expand education to more overseas affiliates
  • Self-evaluation: ★★★ Achieved more than targeted / ★★ Achieved as targeted / ★ Achieved to some extent

Sharp is working to ensure information security by setting forth a Global Basic Policy on Information Security for the safe and appropriate management and use of information and information systems.

As part of its efforts to enhance information security, Sharp also acquired ISO 27001 certification in 2015 and has secured an appropriate information security management system.

Summary of ISO 27001 Certification Activities

Organization Sharp Corporation
Scope of Certification
  • The planning, management and operation of call center service, taking care of users’ complaints.
  • The administration and operation of an affiliated web site.
  • The implementation of in-company information management.
Certification Number IS 635826
Certification Body BSI Group Japan K.K.
Initial Certification Date June 30, 2015

Information Security Measures

Sharp strives to raise security awareness with thorough dissemination of in-house information security rules; for example, through compliance-related training based on the Sharp Code of Conduct. In addition, we have affiliates in Japan conduct periodic information security self-checks in order to confirm that measures are being properly taken and thus ensure that the entire Sharp Group continues to maintain and improve its security.

To focus on targeted email attacks, a security risk that employees deal directly with, we are stepping up drills in which employees receive malicious mock emails.

In fiscal 2022, we tested our response capabilities by having all employees at Sharp and affiliates in Japan receive several types of malicious emails that mimicked real-life ones. Employees who did not deal with the email appropriately were given further guidance on the dangers of email attacks to raise their security awareness. We will continue to provide such training that mimics the latest email attack methods, as well as step up measures by expanding training to more overseas affiliates to strengthen our global security.

We will continue to maintain and strengthen our security by stepping up activities. For example, to prevent information leaks to outside of Sharp, we check the vulnerability of publicly accessible Sharp-related websites, and we put in place measures to prevent hacking and the access of illicit websites.