Tokyo, June 17 (Jiji Press)–The Japanese government Friday adopted a new public-private cybersecurity action plan for the protection of key infrastructure.
In the action plan, the government calls for clarifying the responsibility of executives when computer system glitches occur, urging companies to include measures against cyberattacks into their organizational governance systems.
This marked the first update to the cybersecurity action plan in five years. The new plan regards 14 sectors, including information and telecommunications, finance, airline, electricity and medical care, as key infrastructure.
The plan underlined the need to clarify the roles and responsibilities of top executives, chief information security officers and system operators.
Many recent large-scale system glitches could have been avoided if appropriate personnel and budgets had been allocated, the plan said.
“Obligations to establish proper internal control systems under the company law include taking appropriate cybersecurity measures,” the action plan said.
It also highlighted the need to improve capabilities to deal with system failures throughout supply chains, given the increased mutual dependence of companies.
It is essential for the entire organization, including not only system operators but also top executives, to respond to cybersecurity threats that are becoming more sophisticated year by year, Chief Cabinet Secretary Hirokazu Matsuno told a press conference.