ISMS
We have established ISMS in accordance with ISO27001:2013, the international standard for information security management systems, and have set goals under the following basic policy to ensure information security.
[1] Information Security Basic Policy
Security Design, Inc. considers information security to be an important management issue in its business activities. We have established an information security management system (hereinafter referred to as "ISMS") that conforms to "ISO/IEC 27001:2013" and strive to protect the information assets of our customers and our own information assets that we handle, prevent security incidents, and continuously improve information security.
1. Purpose of ISMS
- (1) To fulfill corporate social responsibility and improve customer service by continuously preventing or reducing information security incidents.
- (2) In the event of an information security incident, minimize the damage and recover quickly to ensure business continuity.
2. Establishment of information security system
We will establish an information security management system and environment, and continuously implement and improve ISMS.
3.Security measures based on risk assessment
We implement security measures based on risk assessment to prevent accidents and their recurrence.
4.Education and training
We will provide education and training to directors and employees to raise their awareness of information protection and ensure that they are familiar with regulations related to information management.
5.Compliance with laws and regulations
We will strictly implement relevant laws and regulations and contracts with customers, and ensure the security of information assets in accordance with internal regulations.
6.Review and continuous improvement
We will periodically review and improve our information security management system in order to appropriately respond to social, technological, and legal changes related to information security.
Ryohei Furusato
President & Representative Director
Security Design, Inc.
March 15, 2023
[2] Information Security Objectives
01.Information is handled in accordance with the confidentiality level.
02.Appropriate anti-virus measures are taken to protect against virus infection.
03.License rights for the use of software products are observed.
We have obtained ISO27001 certification for our information security management system.
(Scope of application: Tokyo Headquarters and Osaka Branch)