We systematically identify and evaluate risks that may arise from our business operations and implement measures to minimize negative impacts in order to fortify the sound and sustainable development of the EBARA Group. We are shifting from a system that focused on responding ad-hoc to individual risks that emerge in the course of business to a more systematic approach that emphasizes continuous implementation of improvements to the system parallel to enacting risk measures.
The EBARA Group must reinforce its group governance and risk management measures in order to support the global expansion of its business. To strengthen group governance, we are revising our regulations for group administration and ensuring these regulations are observed. In addition, we have established the Risk Management Guidelines, which are meant to facilitate the development of risk management systems at group companies based on shared targets, as well as the Internal Control Guidelines aimed at enhancing internal controls. These and other frameworks are implemented at all group companies. We will pursue ongoing improvements to our risk management system by utilizing and entrenching these frameworks. The Risk Management Panel is in place as a body responsible for coordinating risk management activities, carrying out deliberation, and providing guidance and support for the implementation of improvements. The RMP is chaired by the President and Representative Executive Officer and made up of all Executive Officers. Furthermore, Non-executive Directors attend the panel and exercise supervisory functions in risk management by providing advice and the like as necessary. The RMP reports its deliberations to the Board of Directors and the Board of Directors conducts appropriate oversight.
|Risk Management Panel (RMP)||Deliberate and oversee overall risk management strategy/measures for the Group and provide guidance and support for improvements||Members: All Executive Officers
Chair: President and Representative Executive Officer
|Business Continuity Management (BCM) Subcommittee||Ensure business continuity in the event of large-scale disasters||Members:Department heads of Risk Management/ HR/General Affairs/Information Systems/Business Segment Risk Management Departments
Chair: Risk Management Division Executive Officer
|Information Security Subcommittee||Strengthen information security measures with a particular focus on IT Security and Information Management||Members: Department heads of Risk Management/Information Systems
Chair: Person responsible for Group Information Security
|Company Risk Management Committees||- Respond to risks faced by each business segment and each Group Company under the purview of each business segment regarding sales projects, contracts, investment and financing, and so on
- Implement improvement measures indicated by the Risk Management Panel
|Members: Nominees of Company Presidents
Chair: Company Presidents
The EBARA Group’s products, technologies, and services are used in every corner of our society, industry, and daily life, including water supply and sewage systems, flood-control drain pumps, waste incinerators, power plants, steel, chemical, semiconductor, and other types of plants, hospitals, commercial buildings, and condominiums. It is the mission of the EBARA Group to provide products and services to help continue or quickly recover these functions when a massive disaster strikes.
In the event of a disaster of a scale that may disrupt business, the local headquarters set at each location takes the initiative by conducting evacuations, rescues, putting out fires and any other conduct necessary to secure the safety of our employees and prevent further damage to facilities. After the initial response, the business continuity and recovery activities begin, with the intent to mitigate damage to ongoing projects and facilitate the rapid recovery of important business. The headquarters for company business continuity measures monitors’ company-wide progress, disseminates information and makes company-wide instructions.
We conduct groupwide crisis simulations all employees of the domestic EBARA Group participate in every year.
On September 3, 2018, the simulation included the set-up and operation of a crisis-response general headquarters and local headquarters and evacuation drills in districts, offices, sales offices and domestic group companies. Through this simulation, we reaffirmed the correct procedures to take during a crisis and raised the awareness of each employee regarding crisis response.
The simulation situation was of a large earthquake directly under the capital of Tokyo in the early morning in which the members of the crisis-response general headquarters (EBARA's Executive Officers) would have limited means of communication. The supervising headquarters and the Osaka branch office (secretariat) worked together to practice first-response to this crisis situation.
Osaka Branch Office (Secretariat)
Each local crisis-response headquarters practiced gathering information regarding safety status and damages and reporting it to the general headquarters.
We conducted evacuation drills based on the Evacuation Guidance Plan at each site and practiced confirming the safety of all employees.
At the Haneda headquarters, we conducted emergency building checks in line with the “Guidelines for Emergency Building Inspections” released by the Cabinet Office of Japan.
Conducting building-tilt inspection
We protect our information systems while managing data in an appropriate fashion and never use information in unethical ways. Furthermore we take extensive measures to protect personal information of employees, customers and suppliers alike.
The following five principles are part of the EBARA Group’s information security policy and must be followed by all executive officers and employees of the EBARA Group:
Fully understand the impact of information leakage and recognize the necessity of protection from such leakage.
Do not take out important information outside the Company. If necessary for business, get necessary permission.
Take suitable countermeasures against carelessness or other actions which may lead to information leakage, and prepare in advance for the effects of information leakage.
Control and maintain significant information so that you can identify and restrict when information leakage has occurred.
In the event of a leak of significant information, immediately inform the relevant departments of the Company and take necessary action.
<b>Management regulations, education, etc.</b>
We at EBARA Corporation have established Information Security company regulations and operate in accordance with these regulations. In addition, we regularly create various manuals, educational materials as well as a yearly e-learning module to educate employees about information security.
We take measures to protect our data and other system infrastructure from earthquakes, power failure and other disaster scenarios. We also protect our infrastructure and other data including documents and storage media through proper security measures such as theft prevention measures and proper disposal methods at various business locations to prevent data leakage.
<b>Operational Management of Information Systems and Communication Networks</b>
We strive to ensure our systems and software are always on the cutting edge in order to minimize risks associated with older systems. We also monitor and protect a variety of devices in order to catch security threats early. In addition, we use encryption technology and passwords, etc. to protect sensitive information and minimize information security incidents.
<b>Access Management, Development and Maintenance of Security Measures</b>
We ensure the proper management of passwords, IDs, approval authority, access to privileged information and systems based on our IT General Control Rules. In addition, we strive for the standardization and systematization of system development, construction, and maintenance.
<b>Response to Incidents and Emergencies</b>
We are constantly evaluating and working to improve our incident management, duplication of important equipment and networks, back-ups as well as our communication, reporting and established recording processes based on our Management System.
Controlling our exports is one way to manage risk on a global scale. We manage and control our exports through the following rules and systems.
We established the Rules for Security Trade Control (internal basic rules of EBARA Corporation regarding compliance to export-related laws) in 1990 and have been strictly managing such rules. The Rules have been notified to and accepted by the Ministry of Economy, Trade and Industry (METI). We formulated the Security Trade Control Manual as the detailed regulations for the Rules and manage it accordingly.
We created a department that manages and oversees security trade control, and in the domestic group, we established the EBARA Security Trade Control Committee as a cross-sectional organization and strictly manage security trade control. Through the department and committee, we communicate the latest information to the entire domestic group on regulations revised in accordance with changes in the global security environment and work on the implementation of the non-proliferation export control, a global initiative.
Inquiry about sustainability