TOKYO ELECTRON LIMITED

Information Security

Approach to Information Security

An environment where data can be used safely and securely is crucial for the continuous and steady development of the operations of the Company. For this reason, we view the assurance of information security as an important managerial issue, and continuously reinforce the protection of information about our customers and suppliers as well as confidential information on leading-edge technology. In addition, we strive to strengthen information security to ensure the stable operation of the entire supply chain.

Main Activities

 


              
 
Information Security Systems Responding to Security Threats Information Security Management
Information security strategies for the entire Group are developed at the TEL Group Information Security Committee, chaired by our executive officer.
In addition, we are building a Group-wide system dealing with security measures based on the shared understanding and collaboration with the Information Security Committees of each company.
Specialized security engineers monitor threats, such as cyberattacks or internal fraud 24 hours a day, 365 days a year. We have a rapid response system where information is shared swiftly among relevant divisions in the event of an incident. To protect information assets from various threats, we have established global security policies and are gradually progressing toward ISO/IEC 27001*¹ certification while striving for continuous improvements based on PDCA cycles.
In addition, we are working on improving security awareness and literacy by conducting continuous information security training for all employees.
   
 
Security at Manufacturing Sites and in Products Supply Chain Security External Activities and Strengthening of Information Security Human
Resources
 We are strengthening security at our manufacturing sites to ensure the safe and stable operation of our manufacturing systems. Furthermore, we are also implementing security measures, not only in our products, but also in our manufacturing processes and field support so that our customers can use our products and services with assurance. To protect the entire supply chain from information security threats, we regularly conduct information security assessments on our suppliers. We are working on the continuous enhancement of security measures by making improvements with our suppliers on identified issues We are contributing to the improvement of information security levels in the semiconductor industry and in society as a whole through external security activities such as initiatives for the standardization of security in SMCC*². We are also actively engaged in the recruitment and development of human resources that support information security.

ISO/IEC 27001: International standard for Information Security Management Systems

SMCC: Semiconductor Manufacturing Cybersecurity Consortium. A consortium that deliberates on strengthening cybersecurity within SEMI, an international semiconductor industry association