MOL strives to establish a system to combat threats to cyber security that grow every day and aims to ensure cyber security and reinforce security for group companies in Japan and overseas as well as for our vessels.
We also take a comprehensive approach to strengthening cyber security measures, including information security awareness training.
We have established a Chief Digital & Information Officer (CDIO) to strengthen its information security system. The CDIO, as the security officer, gives instructions to the security manager and supervises the implementation of information security measures, the establishment of incident response systems, and the formulation and promotion of security enhancement policies such as training and education for our company and its group companies. In our company, MOL Information Systems, Ltd. is responsible for information security management and supports our group in the field of information systems, including the construction, and maintenance of systems and networks to enhance security measures.
The board of directors is responsible for overseeing information security efforts, and appoints CDIO.
MOL organized an organization for Serious ICT Incidents to swiftly and comprehensively respond to ICT incidents including cyber security risks. And we not only established an emergency communication flow in the group, but also share information to prevent the occurrence of incidents.
We set out unified group-wide criteria to judge the severity of ICT incidents. In case of emergency, we gather information on the incident according to the severity level set by the criteria.
This led to the establishment of the "Emergency Headquarters for Serious ICT Incidents," under which not only management, but also the Corporate Planning, Secretaries & General Affairs, Corporate Communication, Marine Safety, Human Resources, Finance, and Information System divisions will respond quickly and appropriately to any threat or incident, in accordance with their roles.
Please refer to "Sustainability Data" for the number of serious ICT incidents.
MOL established an organization called "MOL-CSIRT," which investigates suspected fraudulent emails, malware, cyber threats, and sends reminder alerts related to these cases, and provides awareness-raising programs based on lessons learned from previous incidents. This aims to reduce risks of cyberattacks for MOL and group company users in Japan and overseas. In addition, we regularly collect information on cyber risks and the latest security trends in collaboration with Japan's Ministry of Land, Infrastructure, Transport and Tourism and private organizations such as Transportation ISAC JAPAN, Nippon CSIRT Association, JPCERT/CC, among others, and utilize it to update our cyber security system.
For group companies in Japan and overseas, MOL secures security tools and applications that meet or exceed recommended standards, in order to enhance governance, while confirming the status of each group company's security measures to ensure compliance with MOL's security policy. In addition, we hold regular meetings with CDIOs and others responsible at group companies, to raise awareness of security by sharing our current security status with management and other relevant personnel, thus striving to raise the level of group-wide security in Japan and overseas.
At the 98th Maritime Safety Committee held by the International Maritime Organization (IMO), it was recommended that cyber risk management be included in the safety management system (SMS)*1 for ship operation.
In response, MOL is working to establish a Cyber Security Management System (CSMS)*2, encompassing the guidelines, and develop technological measures for cyber security and organizational system from a cross-sectional perspective.
In addition, we are moving ahead with efforts to separate vessel IT/IOT/Crew networks, provide tools for security measures, and promote the use of these tools, in consideration of the constant connection between vessels and land and the risk of cyberattacks.
Corporate losses from ransomware attacks are on the rise. Recognizing that our company is also a likely target, we are working on preventive measures and damage reduction activities against ransomware attacks. Last year, we conducted a ransomware countermeasure assessment by an external security vendor, established a ransomware countermeasure policy based on the current risk analysis results, and promoted a security enhancement plan.
We provide basic security education to raise awareness of security threats among all executives and employees, including contract employees and partner companies. We conduct annual e-learning and targeted attack e-mail training for vessels and our our Group companies in Japan and overseas.
For the results of e-learning, please refer to "Sustainability Data".
In anticipation of the occurrence of serious ICT incidents due to cyber attacks, which have become increasingly sophisticated in recent years, we are conducting incident response drills involving top management. In a scenario in which the Emergency Headquarters for Serious ICT Incidents is established, the head of the response headquarters (CEO), the CDIO, the head of the division corresponding to the response team, the presidents of Group companies, system administrators, and others participate in drill once a year to implement prompt and appropriate responses to emergencies.