Logo

Governance

Risk Management Structure

Risk Management Structure

Risk Management Structure

The Oji Group has identified Group-wide and business line risks within the execution of business by categorizing risks in all of the assets it owns, both tangible and intangible, in accordance with the Group Risk Management Regulations, as shown below. Responses to risks are implemented by the responsible management and support departments.

Group-Wide Risks, Business Line Risks

The Board of Directors supervises the enhancement and implementation of risk management. When a new risk occurs, the Board of Directors makes a decision after deliberations within the Group Management Meeting. The Director and the General Manager of the Corporate Governance Division is responsible for the risk management of the Oji Group. The Corporate Governance Division works to ensure the effectiveness of the risk management of the overall Group.
The Director and the General Manager of the Corporate Governance Division is also responsible for health management and labor safety management of the Oji Group.

Risk Management Structure

Measures for Information Security

The Oji Group positions various information obtained during its business activities as important assets required for business continuity. In FY2019, with the aim of strengthening our response to the ever-evolving IT environment, we established the Group Information System Usage and Risk Management Regulations, which have undergone a major overhaul, to reinforce our ability to prevent leakage of confidential information and prepare for cyber-attacks and disasters.
The Oji Business Center, as a department that oversees our information system risk management, regularly audits the compliance status across the Group and reports the results to the Group Management Meeting. In addition, to educate employees, we regularly perform educational activities in Company Newsletter and provide e-mail training utilizing external experts to deal with phishing e-mails that are becoming more sophisticated every day.
In terms of facilities, we are building a backup system for internal servers in external data centers as part of our BCP.
Going forward, we will work to make sure that these measures will take hold and at the same time implement them at overseas group companies to further strengthen our efforts to improve information security.

Information Security Structural Diagram