Main content Main content

Information Security Training

Status of Information Security Training

In order to continuously improve the information security level of Group ISMS, multi-faceted information security training is effective for participation by all employees.

Training for All Employees

The Ricoh Group provides training for all employees.

Training for all employees is provided every year, not only to directors, managers and general employees, but also to temporary employees.

(1) E-learning

E-learning is for learning what information security is and the basic behavior rules of handling business information. The training material is revised every year and is designed so that all learners can complete by the deadline.

E-learning is not just for cramming knowledge into learners, but also for calling their attention to actions that may develop into a serious incident or accident among the precautions in their daily activities. It aims to clearly indicate the dos and don’ts―the specific actions to take in information security and the reasons for them.

Moreover, e-learning ensures that the penalties for violating the information security rules are fully known and understood among all employees, with the aim of preventing violations.

(2) Targeted e-mail attack training

In recent years, growing importance has been placed on measures against targeted cyberattacks, which are carried out by sending e-mails. The Ricoh Group conducts drills that help employees to understand the characteristics of attack e-mails and handle them properly. As employees have raised their awareness of attack e-mails through the drills, and the open rate of mock cyberattack e-mails has been decreasing every year, the drills will continue to be conducted in the future.