Basic Information Security Policy

Basic Information Security Policy(ISO/IEC27001)

We recognize that protecting all information assets handled in business activities from all threats is a social obligation, and we position maintenance and improvement of information security as an important issue.

Therefore, we aim to provide services that earn the trust of stakeholders such as customers and society, by maintaining a state where only authorized persons can access information assets when necessary, and taking precautions to prevent leakage, tampering, theft, unauthorized use and the like of information assets.

We will establish, implement, operate, monitor, review, maintain and improve the information security management system according to the basic policy stipulated here. All employees recognize the roles they play in order to achieve this objective and carry out operations according to the system procedures.

  1. We will comply with business and legal requirements and contractual security obligations.
  2. We will establish and maintain the scope of ISMS.
  3. We will establish a framework and standards for risk assessment and implement risk assessments.
  4. We will implement internal audits and management reviews, and implement ongoing improvements.
  5. We will recognize the purpose and importance of information security and implement employee education to achieve the purpose.
  6. For serious breaches of information security, we will implement disciplinary measures in accordance with internal regulations.
  7. We will identify information security events and incidents quickly and implement corrective and preventive measures.
  8. We will continuously improve the information security system with the president as the highest level of responsibility.


October 21, 2016
President & Representative Director
Nippon Engineering Consultants Co., Ltd.
Nobuhiro Arai


ISO scope

ISO9001(JIS Q 9001:2008) MSA-QS-116
Applicable business establishment  Whole company(However, excluding audit office, overseas business division, PM office of each branch office)

ISO14001(JIS Q 14001:2004) MSA-ES-76
Applicable business establishment  Whole company(However, excluding audit office, overseas business division, PM office of each branch office)

ISO/IEC27001(JIS Q 27001:2014) MSA-IS-105
Applicable business establishment  Engineering Management Department / Basic Technology Institute / Yokohama Branch