Global Site

Displaying present location in the site.

Information Security Report

Today, when the entire world is openly connected and the use of AI is increasing, it is becoming a critical challenge, for nations and businesses alike, to address increasingly sophisticated and commercialized cyberattacks, the growing risk of information leakage stemming from the extensive use of cloud services, and information management challenges related to economic security.

Given these circumstances, NEC is building a zero trust security platform across our group that has robust and flexible security measures, such as password-less authentication, based on the Cybersecurity and Infrastructure Security Agency’s (CISA) Zero Trust Maturity Model.

We are developing our cybersecurity organizational structure by strengthening our intelligence gathering capabilities (for preventive defense) against increasingly damaging cyberattacks and our resilience capabilities (ability to recover from cyberattacks), in line with Version 3.0 of the “Cybersecurity Management Guidelines” established by Japan’s Ministry of Economy, Trade and Industry (METI) and the “Cybersecurity Framework (Version 2.0)” that the US National Institute of Standards and Technology (NIST) revised in February 2024 for the first time in 10 years. In addition, with our data-driven cybersecurity initiative, we visualize cybersecurity risks through dashboards to provide all employees with information on these risks. This helps top management make data-driven business decisions quickly and members of the workforce to act autonomously, allowing us to achieve security governance. Moreover, our efforts also include enhancing the information security, including that of the supply chain, to provide high-quality and secure services, based on the concept of Security by Design, which takes security into account from the design phase.

NEC's continual goal is to be a trusted entity within society. We aim to achieve this by executing enterprise risk management and by delivering the innovative technologies already at work within our company.

This report outlines the latest strides the NEC Group has made in the realm of information security. We hope you read this report and find it informative.

Information Security Report 2024

<Contents>

  • To Be “Truly Open, Truly Trusted”
  • On the Publication of “Information Security Report 2024”

NEC's Information Security Report

  • Information Security Promotion Framework
  • Information Security Governance
  • Information Security Management
  • Information Security Infrastructure
  • Information Security Personnel
  • Measures Against Cyberattacks
  • Information Security in Cooperation with Business Partners
  • Providing Secure Products, Systems, and Services

NEC's Cutting Edge of Information Security

  • NEC’s Cybersecurity Strategy
  • Response to New DX-Related Security Risks
  • Examples of Cutting-Edge Research and Development of Cybersecurity Technologies
  • Third-party Evaluations and Certifications
  • NEC Group Profile

Archives

Information Security Report 2023

Information Security Report 2022

Information Security Report 2021

Information Security Report 2020

Information Security Report 2018

Information Security Report 2017

Information Security Report 2016

Information Security Report 2012 image

Information Security Report 2014

Information Security Report 2014 image