Risk Management
Risk Management Framework
The Risk Management Committee leads Zeon’s risk management. Activities to prevent law violations and to comply with laws and regulations are conducted under the Compliance Committee. The Information Management Committee implements appropriate management of information, from the time when information is obtained until the time when it is deleted.
BCP Formulation and implementation of Related Training
Recognizing the need on business continuity to mitigate the impact of damage from disasters such as earthquakes and severe storm and flood damage, we have formulated a Business Continuity Plan (BCP), and we implement training in order to enhance its effectiveness.
In addition, individual business divisions and plants have drafted their own BCPs, conducting reviews (BCM) and implementing their own training on an ongoing basis, while putting in place systems to facilitate rapid responses in the event of emergencies.
Internal Reporting System
We established its Internal Reporting System to quickly collect information on potential risks and facilitate their appropriate resolution. Per the rules on reporting risk-related information, reports can be made not only to one’s supervisor or the Risk Management Committee directly, but also by calling the Compliance Hotline (❶ to ❸ below), which connects the caller to an external lawyer.
The Risk Management Committee conducts an investigation into the reported details and facilitates appropriate resolutions, including instructing internal organizations to institute measures based on the outcomes of their investigations.
Structuring Our Cybersecurity System
The Cyber Security Committee reports directly to the President. The Committee oversees planned cybersecurity enhancements and provides prompt emergency response. It is also responsible for managing electronic information security.
In addition, a Computer Security Incident Response Team (CSIRT) within the Committee ensures prompt response in the event of security incidents.