SoftBank Group Corp. constructs a mechanism which manages information security risks continuously and efficiently in order to secure adequacy of a whole group business with independency of business of each group company.
Principles for Information Security
Information Security Report
We publish Information Security Report to help you understand information security initiatives at SBG and the Group companies.
Group Information Security Governance Structure
SoftBank Group Corp. appoints a Chief Information Security Officer (CISO) as an information security management representative. The CISO also promotes and strengthens group-wide information security governance.
Group Information Security Committee
SoftBank Group Corp. establishes Group Information Security Committee consisting of CISOs of business unit companies and CISO of SoftBank Group Corp. runs the committee.
SoftBank Group Corp. requests each business management company establish the Information Security Committee consists of CISOs of its subordinate group companies and the CISO of the business management company run the committee.
Cybersecurity Risk Management Framework Response of SoftBank Group Corp.
SoftBank Group Corp. establishes measures for increasing cybersecurity risks as part of our information security responses. The implemented measures are analyzed and evaluated according to NIST CSF*, a framework adopted by organizations and enterprises around the world. Based on these results, we continuously work to improve our information security system.
The evaluation is reviewed by external experts with information security expertise of the United States and other advanced countries at each stage of the implementation process.
NIST CSF: Established by an agency of the United States Department of Commerce, National Institute of Standards and Technology (NIST).
The NIST Cybersecurity Framework (CSF) is a framework that integrates cybersecurity risk management standards, guidelines, and best practices.