Cybersecurity Strategy in Japan May 2016 Yasu TANIWAKI Deputy Director-General National center of Incident readiness and Strategy for Cybersecurity (NISC)

Slides:



Advertisements
Similar presentations
Ministry of Labor and Social Policy SOCIAL POLICY COUNCILS Dragica Vlaović-VasiljevićSophia, 2-6th July 2007 Dragica Vlaović-VasiljevićSophia, 2-6th July.
Advertisements

The intersectoral approach within the OAS Inter-American Council for Integral Development (CIDI) First Meeting of Ministers and High Authorities of Social.
STRENGTHENING COOPERATION ON CYBER SECURITY WITHIN THE ASEAN REGION
Philippine Cybercrime Efforts
Implications for the Regions EU-Regional Policy 1 Governance White Paper Introduction Adoption of White Paper on European Governance, July 25, 2001 Aim:
International Telecommunication Union An Insight into BDT Programme 3 Marco Obiso ICT Applications and Cybersecurity Division Telecommunication Development.
PRESENTATION OUTLINE Introduction Climate change initiatives Capacity Challenges.
ENISA Cyber Security Strategies Workshop November 27, 2014 Brussels
Malak Zaalouk MENA Education Advisor UNICEF Programmes and Policies to Apply the Guidelines for Arab Teachers Performance Standards.
Presentation by Cambodian Participants Phuket, Thailand February 2012 Health Impact Assessment Royal Government of Cambodia.
David A. Brown Chief Information Security Officer State of Ohio
The French approach to CIIP ENISA workshop. Coordination of CIP in France ANSSI 2 A cross-ministerial issue The General Secretariat for Defense and National.
AGENCY FOR PREVENTION OF CORRUPTION AND COORDINATION OF FIGHT AGAINST CORRUPTION mr.sci. Vladica Babić - Assisstent.
BELMONT FORUM E-INFRASTRUCTURES AND DATA MANAGEMENT PROJECT Updates and Next Steps to Deliver the final Community Strategy and Implementation Plan Maria.
Examples of Best Practices: Anti- corruption Strategy of the TCA Musa KAYRAK Senior Auditor, CISA.
National CIRT - Montenegro “Regional Development Forum” Bucharest, April 2015 Ministry for Information Society and Telecommunications.
James Ennis, Department of State, USA ITU-D Question 22/1 Rapporteur.
National Cybersecurity Management System
UK Office for Security & Counter Terrorism Future threats and the potential role of the CBRN Action plan in supporting the BTWC Dr Catherine Terry International.
Resiliency Rules: 7 Steps for Critical Infrastructure Protection.
‘Approaches to programme planning and budgeting’ Experience of Regional Centre for the Safeguarding of Intangible Cultural Heritage in South-Eastern Europe.
IT Security Policy in Japan 23 September 2002 Office of IT Security Policy Ministry of Economy, Trade and Industry JAPAN.
TTBIZLINK PROJECT MINISTRY OF TRADE, INDUSTRY, INVESTMENT & COMMUNICATIONS.
Critical Role of ICT in Parliament Fulfill legislative, oversight, and representative responsibilities Achieve the goals of transparency, openness, accessibility,
Bill Newhouse Program Lead National Initiative for Cybersecurity Education Cybersecurity R&D Coordination National Institute of Standards and Technology.
Programming of International Development Assistance Donor Meeting Agency for Human and Minority Rights September 27, 2007.
Japanese Government’s Efforts to Address Information Security Issues October, 2007 National Information Security Center (NISC)
1 THE THIRD ENERGY PACKAGE – THE ENERGY COMMUNITY APPROACH Energy Community Secretariat 20 th Forum of the Croatian Energy Association and WEC National.
ICT Standards and Guidelines Findings and Recommendations B. Chatterjee Chief Technology Officer, CNSI.
CEBS in Brief. The Lamfalussy approach The Lamfalussy approach was first implemented in the securities field following the recommendations of the Committee.
The Global Centre for Information and Communication Technologies in Parliament 14 June 2006 V Legislative XML Workshop Towards European Standards for Legislative.
Toolkit for Mainstreaming HIV and AIDS in the Education Sector Guidelines for Development Cooperation Agencies.
Towards a European network for digital preservation Ideas for a proposal Mariella Guercio, University of Urbino.
A National approach to Cyber security/CIIP: Raising awareness.
An Analysis of the Cyber Security Strategy (2008) of Estonia Based in part on ITU Q.22/1 Report On Best Practices For A National Approach To Cybersecurity:
Environmental Management System Definitions
Country Report from Japan Principle Act for GNSS utilization in Japan Space-based PNT Advisory Board October, 2008 at Washington DC Hiroshi Nishiguchi.
Land Governance and Security of Tenure in Developing Countries White paper of the French Development cooperation LAND POLICIES AND MDGS IN RESPONSE TO.
Strategic Policy Advice and Policy Coordination in Serbia Marko Paunovic October 1 st 2005.
Outline of Japanese Alliance for Climate Change Observation (JACCO) Shin MIYAZAKI ( Office for Coordination of Climate Change Observation (OCCCO), Japan.
THE FINAL ACTS OF THE ITU PLENIPOTENTIARY CONFERENCE, MARRAKESH, MOROCCO 2002 PRESENTATION TO SELECT COMMITTEE ON LABOUR AND PUBLIC ENTERPRISES.
Prof. Ömer ANLAĞAN Vice President 7 November 2008, İstanbul Turkey’s RTDI Profile “12th Monitoring Committee for Euro-Mediterranean Cooperation in RTD”
What APEC Task Force for Emergency Preparedness (TFEP) has progressed in the implementation of HFA Presented by Vincent Liu Program Director APEC Secretariat.
CCC’s Bi-Monthly Member Meeting GHP Operational Plan 2016 By: Soeung Saroeun, ED EL Sotheary, HOP 08 December 2015, KSSA, Phnom Penh Vision: Sustainable.
Summary of the Open Government Data Strategy The Open Government Data Strategy was adopted as a strategy for intensive implementation of measures to promote.
Strategy for Sustainable Development of the Czech Republic - from individual to participatory approach Jiří HLAVÁČEK Director Department of Strategies.
Danube Transnational Programme – opportunities for cooperation Bucharest
CONTRIBUTING TO THE ELABORATION AND IMPLEMENTATION OF STRATEGIES FOR INTELLECTUAL PROPERTY (IP) DEVELOPMENT Loretta Asiedu Senior Counselor WIPOWindhoek,
Future needs for capacity building and recommendations to the OIE Dr Sarah Kahn Consultant to the OIE
Office of Special Projects Issues arising from the Second Review Conference on Safety and Security at Chemical Plants and Relationships with CWC stakeholders.
New approach in EU Accession Negotiations: Rule of Law Brussels, May 2013 Sandra Pernar Government of the Republic of Croatia Office for Cooperation.
The Commonwealth Cybercrime Initiative David Tait, Cybercrime Policy Analyst.
M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 10 – Information society and media.
WORKSHOP ON THE ESTABLISHMENT OF A NATIONAL COMPETITIVENESS AND PRODUCTIVITY COUNCIL FOR SAINT LUCIA Presentation by Laura del Castillo Saviñón, Technical.
M O N T E N E G R O Negotiating Team for the Accession of Montenegro to the European Union Working Group for Chapter 31 – Common Foreign and Security Policy.
Project: EaP countries cooperation for promoting quality assurance in higher education Maria Stratan European Institute for Political Studies of Moldova.
Cyber Security Phillip Davies Head of Content, Cyber and Investigations.
UNECE International Forum on Trade Facilitation
Activity of the High-Level Group for Partnership, Coordination and Capacity Building for Statistics for Agenda 2030 on Sustainable Development (HLG) Gulmira.
TOWARDS A REGIONAL PROGRAMME IN SUPPORT OF 2020 ROUND OF POPULATION AND HOUSING CENSUSES – SADC REGION United Nations Regional Workshop on the 2020 World.
DEVELOPMENT & IMPLEMENTATION OF A NATIONAL STRATEGY ON CSR
Updates Key areas of CCSA action: Next Generation Network: SDN, NFV
The National Initiative for Cybersecurity Education (NICE)  AFCEA International Cyber Education, Research, and Training Symposium January 17, 2018 Bill.
Overview Rationale Context and Linkages Objectives Commitments
8 Building Blocks of National Cyber Strategies
FISCAL & BANKING REFORMS IN MOLDOVA
The European Union response to cyber threats
Overview Rationale Context and Linkages Objectives Commitments
Digital Policy -Transformation Towards Society 5.0-
Health and safety at work in the EU
Presentation transcript:

Cybersecurity Strategy in Japan May 2016 Yasu TANIWAKI Deputy Director-General National center of Incident readiness and Strategy for Cybersecurity (NISC) Cabinet Secretariat, Government of JAPAN

✔ Integrating and advancing cybersecurity policies crossing over governmental bodies ✔ Monitoring, analyzing, and handling cyber attacks to governmental bodies on 24/7 basis as a governmental CSIRT The Leading Organization of Government of Japan for Cybersecurity Issues The Roles of NISC 1

“Cybersecurity Strategy” [June 2013] Adopted by the Information Security Policy Council New “Cybersecurity Strategy” based on the Act [September 2015] After accepting opinions from NSC and IT Strategic HQs, the strategy was adopted as a Cabinet Decision, and reported to the National Parliament Based on agreements with other governmental bodies Cybersecurity audit: self audit Incident analysis: NISC provides supports to other governmental bodies on request basis Authority with concrete grounds based on the Act Cybersecurity audit: 3 rd Party audit by NISC Management audit Penetration test Incident analysis: NISC has authority to conduct cause investigation in serious incidents Mandatory reports from other governmental bodies Send formal recommendation to other governmental bodies The Basic Act on Cybersecurity [Enforced from 9 th January 2015] Institutional Framework Authority to GovernmentalBbodies Strategy Before the Act After the Act Strengthened authority Raised status Cabinet of Japan Information Security Policy Council IT Strategic Headquarters (Director-General : Prime Minister) NSC (Chair : Prime Minister) National Information Security Center NISC Clear legislative backgrounds NISC IT Strategic Headquarters NSC Cybersecurity Strategic Headquarters (Director-General:Chief Cabinet Secretary) Established by a Cabinet Order Cooperation National center of Incident readiness and Strategy for Cybersecurity Cabinet of Japan Established by the Act Decision by Director- General of IT strategic HQs Decision by Prime Minister 2 2

4 Policy Measures Building a Safe and Secure Society for the People Peace and Stability of International Community and Japan’s National Security Improvement of Socio-Economic Vitality and Sustainable Development Advancement of R&D Development of cybersecurity human resources 1 Understanding on Cyberspace 2 Objective 3 Principles 5 Organizational Framework Cybersecurity Strategy ✔ Free Flow of Information ✔ Rule of Law ✔ Openness ✔ Autonomy ✔ Collaboration among Multi- Stakeholders Cybersecurity Strategy - Principles - 3

4 Policy Measures Building a Safe and Secure Society for the People Peace and Stability of International Community and Japan’s National Security Improvement of Socio-Economic Vitality and Sustainable Development Advancement of R&D Development of cybersecurity human resources 1 Understanding on Cyberspace 2 Objective 3 Principles 5 Organizational Framework Cybersecurity Strategy ■ Creation of Secure IoT Systems A guideline for a framework of security standards of IoT systems [Preparing for a Request For Proposal] An IoT security guideline [To be published soon] ■ Encouraging enterprises to report their cybersecurity efforts to the market To consider the way to create a social environment where business leaders would positively tackle with cybersecurity issues as their strategic business challenges [by summer 2016] ■ Supporting information sharing between the private and the public sectors, and within the private sector Cybersecurity Strategy - Promoting Industry by Ensuring Cybersecurity - 4

Analytical Framework on IoT Security (draft) - 5 Devices Network Platform Service IoT system System of Systems (SoS)

4 Policy Measures Building a Safe and Secure Society for the People Peace and Stability of International Community and Japan’s National Security Improvement of Socio-Economic Vitality and Sustainable Development Advancement of R&D Development of cybersecurity human resources 1 Understanding on Cyberspace 2 Objective 3 Principles 5 Organizational Framework Cybersecurity Strategy ■ Advancing information sharing on software vulnerabilities ■ Conducting constant review on the scope of CIIP and enhancing information sharing on CII The Basic Policy of CIIP 3 rd Ed. [May 2014] Adopting the Roadmap for CIIP Policy Update [March 2016], which aims to enhance CII’s cyber protection Based on the roadmap, NISC started to review & renew measures, such as public-private information sharing scheme and implementation [To be finished by March 2017] ■ Improving cybersecurity measures for governmental bodies The Common Standards for the Governmental Bodies [May 2014] To revise the Common Standards [by summer 2016] Extending NISC’s scope of network monitoring by amending the Basic Act on Cybersecurity [April 2016] Cybersecurity Strategy - Enhancing Cybersecurity Capability - 6

4 Policy Measures Building a Safe and Secure Society for the People Peace and Stability of International Community and Japan’s National Security Improvement of Socio-Economic Vitality and Sustainable Development Advancement of R&D Development of cybersecurity human resources 1 Understanding on Cyberspace 2 Objective 3 Principles 5 Organizational Framework Cybersecurity Strategy ■ Advancing discussion on cybersecurity in bilateral cyber dialogues and multilateral frameworks ■ Contributing to the efforts to develop international rules and norms in cyberspace at various fora including UN Cyber GGE National Security Strategy [December 2013] G7 Summit 2016 in Ise-Shima [May 2016] ■ Active contribution to the cybersecurity capacity building in developing countries Cybersecurity Strategy - Improving International Cooperation - 7

4 Policy Measures Building a Safe and Secure Society for the People Peace and Stability of International Community and Japan’s National Security Improvement of Socio-Economic Vitality and Sustainable Development Advancement of R&D Development of cybersecurity human resources 1 Understanding on Cyberspace 2 Objective 3 Principles 5 Organizational Framework Cybersecurity Strategy ■ R&D of IoT security for critical infrastructure in the framework of SIP (Cross-Ministerial Strategic Innovation Promotion Program) ■ Promotion of human resources development by partnership between the public and the private sectors Adopting the Comprehensive Policy for Enhancing Cybersecurity Human Resources Development [March 2016] Establishing a new national cybersecurity professional certification by a legislative amendment [April 2016] Building a national cyber range as a NICT’s facility by a legislative amendment [April 2016] ■ Building up institutional framework towards the Tokyo 2020 Cybersecurity Strategy – R&D, Human Resource Development - 8

Governmental Organization for the Security of Tokyo 2020 Chair: Deputy Chief Cabinet Secretary for Crisis Management Members: All relevant ministries and organizations. The Tokyo metropolitan government and Tokyo Organizing Committee of the Olympic and Paralympic Games are attending as observers Dealing with security issues regarding Tokyo 2020 Security Board The HQs for Tokyo 2020 Olympic and Paralympic Games Chair: Prime Minister Works as the TOGC (Tokyo Olympic Games Council) requested as a mandatory by IOC The Vice Ministers Meeting for Tokyo 2020 Chair: Deputy Chief Cabinet Secretary Chair: NISC Dealing with cybersecurity issues with all relevant ministries Counter Terrorism WT Cybersecurity WT 9

Issues to be dealt with toward Tokyo Human Resources Development Research & Development Enhanced Critical Information Infrastructure Protection Risk Management Government CSIRT for the Tokyo 2020 cooperation TOCOG’s CSIRT ( CIRT2020 ) Cyber Exercise and Training InternationalPartners To identify critical service operators whose services affect Tokyo 2020 operation To establish cybersecurity risk assessment methods To implement cybersecurity risk assessment procedure based on the methods (should be conducted multiple times) To advance efforts in unity To establish an info-sharing and coordinated counter cyber attack framework among government agencies, CII operators, and other related organizations under the leadership of NISC The CSIRT will start its operation for the Rugby World Cup as a first step (summer 2019) Conduct cyber exercises and trainings multiple times among above related organizations, cooperating with TOCOG Bilateral int’l info- sharing frameworks via cyber dialogues, etc. Multilateral int’l info- sharing frameworks such as IWWN Increase and develop cybersecurity workforces especially by increasing cybersecurity education courses, building infrastructure for cyber exercise and training, and revealing individual’s cybersecurity skill by a certification scheme etc., based on the Comprehensive Policy for Enhancing Cybersecurity Human Resources Development [March 2016] R&D topics: Information sharing platform technologies among CII operators and capacity building for cybersecurity operation in CII field [Budgeted by the Cross- ministerial Strategic Innovation Promotion Program ( SIP ) for FY2015 to FY2019] Consider and implement protection improvement measures based on the Roadmap for CIIP Policy Update [March, 2016] Determine concrete measures for enhancement of cyber protection by March, 2017 Responsibility for cybersecurity of games (e.g. stadiums, etc.) cooperation

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.