Last Update: Jun 12, 2014
Initial Disclosure Date: May 21, 2014

On May 19, 2014, the Japanese government hosted a meeting of the Information Security Policy Council chaired by Chief Cabinet Secretary Suga in Tokyo. Prime Minister Abe also attended the meeting. He emphasized that cyber security is critical for national security and crisis management and it is Japan’s responsibility to ensure cyber security for the Tokyo Olympic Games in 2020.

According to the draft of Policy for Better Cyber Defenses, the government plans to establish a law to promote the council to the Cyber Security Policy Council next year and provide more legal authorities to the council. Since this is closely linked to a draft of the Basic Law for Cyber Security, prepared by the ruling parties, the Japanese government plans to cooperate with the Liberal Democratic Party and New Komeito to strengthen the capability of the council.The new council will closely work with the NSC and IT Strategy HQ to craft strategy and deal with major cyber incidents. The Information Security Policy Council is under the IT Strategy HQ.

On May 27, 2014, the ruling parties finalized their draft of the Basic Law for Cyber Security, which will be submitted to the current Diet session on June 11. Since all of the political parties except for the Japan Communist Party agree on the legislative bill, the Diet is most likely to pass it. The legislative bill requires the central and local governments to take responsibility for appropriate security measures to deal with cyber-attacks and also demands critical infrastructure companies to cooperate with the central and local governments on cyber defenses. Under the law, the Headquarters for Cyber Security Strategy will be established under Chief Cabinet Secretary.

The Basic Law requires the government to launch a new position, Cabinet Cyber Security Officer, whose rank is equivalent to Vice Minister, to serve as a commanding officer for the Headquarters for Cyber Security Strategy and for coordinating with other Japanese governmental organizations and overseas. These changes will be followed by the revision of the Cabinet Law and a necessary legislative bill will be submitted to the extraordinary Diet session in fall 2014.

Sources:

1. Prime Minister of Japan and His Cabinet, “Joho sekyuriti seisaku kaigi [Information Security Policy Council],” May 19, 2014,
   http://www.kantei.go.jp/jp/96_abe/actions/201405/19jouhou.html
2. Sankei Shimbun, “Seihu, saiba taisaku kyoka, rainendo medo ni soshiki kakuage boei joho bogyo jushi [the government enhances cyber defenses by promoting its cyber security council and strengthening Ministry of Defense’ networks],” May 19, 2014,
   http://sankei.jp.msn.com/politics/news/140519/plc14051921530012-n1.htm
3. Mainichi Shimbun, “Joho seisaku kaigi: Naikaku saiba sekyuriti kan shinsetsu he [Information Security Policy Council: the Cabinet creates a new post for Cabinet Cyber Security Officer],” May 19, 2014,
   http://mainichi.jp/select/news/20140519k0000e010146000c.html
4. NISC, “Shiryo 1: ‘Waga kuni no saiba sekyuriti suishin taisei no kino kyoka ni kansuru torikumi hoshin (soan)’ no gaiyo [Handout 1: Draft of policy for Japan’s better cyber defenses],” May 19, 2014,
   http://www.nisc.go.jp/conference/seisaku/dai39/pdf/39shiryou0101.pdf
5. Sankei Shimbun, “Yoto, saiba kihon-hoan wo kettei giin rippo de kon Kokkai ni teisyutsu, seiritsumo [The ruling parties finalized a draft of the Cyber Security Basic Law and plan to submit it to the current Diet session --- it will be passed soon?],” May 27, 2014,
   http://sankei.jp.msn.com/politics/news/140527/stt14052720000004-n1.htm
6. Yomiuri Shimbun, “Saiba Sekyuriti Kihon Hoan, kon Kokkai de seiritsu he [the current Diet session is most likely to pass the draft of the Basic Law for Cyber Security],” June 10, 2014,
   http://www.yomiuri.co.jp/it/20140610-OYT1T50153.html

※ Each company name, an organization name, and a brand name are a trade name of each company and each organization, or a registered trademark.