Basic Approach to Information Security
Japan Exchange Group, Inc., Tokyo Stock Exchange, Inc., Osaka Exchange, Inc., Tokyo Commodity Exchange, Inc., JPX Market Innovation & Research, Inc., Japan Exchange Regulation, and Japan Securities Clearing Corporation (hereinafter collectively "JPX Group") carry out the following actions to properly protect information assets.
- Develop systems that enable smooth implementation of information security measures.
- Clearly define roles and responsibilities for proper handling of information assets.
- Categorize information assets by level of importance and implement security measures suitable to each such level.
- Take a comprehensive approach to security controls that encompass administrative, logical, and physical security measures for information assets.
- Prepare manuals and other relevant documents to facilitate implementation of our information security policy.
- Manage vendors by stipulating security measures when entrusting work that involves handling of information assets to third-party vendors outside of JPX Group.
- Offer regular education and training on information security matters.
- Verify compliance with information security policy on a regular basis.
- Assess and review information security policy on a regular basis to continually improve its suitability, adequacy, and effectiveness.
- Develop countermeasures and reporting procedures as preparation in the event that information security issues that can have a material impact on business operations arises.