The National Institute of Advanced Industrial Science and Technology (hereinafter referred to as "AIST") considers "bridging" innovative technological seeds to commercialization toward creation and practical application of technologies useful to Japanese industry and society as its primary mission.
In order to fulfill this mission, AIST must appropriately manage information sourced from within, and provide information concerning the dissemination of research results.
On the other hand, for all the dramatic increase in convenience, recent developments in information technology has incurred greater risks such as unauthorized access, falsification and destruction of information, and information leaks.
The potential risks raised by vulnerabilities in AIST’s information security are not limited to losses incurred due to leakage of technical information and personal information of its executives and employees, but may further lead to information leaks concerning other institutions, thereby leading to a loss of credibility in the eyes of the public.
Aware of its responsibility to society to manage the information at its disposal appropriately, and to ensure the safety and reliability of said information, AIST shall continue to take comprehensive and systematic information security measures in compliance with the “Common Model of Information Security Measures for Government Agencies and Related Agencies,” and the “Common Standard for Information Security Measures for Government Agencies and Related Agencies,” both established by the Japanese Cabinet.
- All AIST executives/employees shall recognize information they handle as crucial assets to AIST, and each and every individual shall strive to ensure information security based on their awareness and sense of responsibility.
- AIST shall establish information security management structures necessary to ensure information security.
- AIST shall implement comprehensive measures to protect information from risks such as falsification, leakage, and destruction.
- AIST shall routinely inspect, evaluate and audit the compliance status of information security measures to maintain and improve its level of information security.
- AIST shall provide education and training on information security measures on a regular basis to improve all executives/employees’ knowledge on information security.
July 15, 2016
Chief Information Security Officer