Throughout the entire Hitachi Group, including companies in business reorganizations and companies integrated as a result of M&As, we are working to ensure compliance and business continuity for internal IT.
To respond to the risk of information leaks and increasing cyberattacks, as well as to ensure proper use of software, we are continuing our efforts to strengthen our IT controls.
Aiming to reduce internal IT risks, we have established requirements for IT controls and IT architecture for BUs and Hitachi Group companies as IT rules and standards to achieve information security, IT compliance, and business continuity.
When supporting global business with company-internal IT, it is essential to ensure requirements (such as information security, IT compliance, and business continuity) while reducing IT risks and costs. The Hitachi Group has BUs#1 and Hitachi Group companies worldwide in various industries and their scale varies. To implement governance in these BUs and Hitachi Group companies, it is important to define consistent and acceptable requirements.
Therefore, we established IT principles as universal rules that can be adopted by the IT departments of all BUs and Hitachi Group companies, regardless of region, industry, or scale. In addition, we also established requirements for IT controls with a focus on IT risk measures, and an IT architecture for IT standardization as IT rules and standards, etc. used in common in the Hitachi Group.
Additionally, we have established and are operating the Hitachi Group IT Control Framework to ensure IT governance throughout the Hitachi Group, including the provision of IT services in accordance with the standards and confirmation through internal audits.
Hitachi Group IT controls framework
