(Ensuring of Cybersecurity at National Administrative Organs and Related Organs)
With regard to Cybersecurity at national administrative organs, Incorporated Administrative Agencies (referring to Incorporated Administrative Agencies prescribed under Article 2, paragraph (1) of the Act on General Rules for Incorporated Administrative Agencies
(Act No. 103 of 1999); hereinafter, the same is to apply), Quasi-governmental Agencies; (referring to a corporation directly incorporated by acts or a corporation incorporated by a special act pursuant to a special incorporation procedure and subject to the provision of Article 4 (xv) of the Act for Establishment of the Ministry of Internal Affairs and Communications
(Act No. 91 of 1999); hereinafter, the same is to apply), and so forth, the national government is to provide necessary measures including: the formulation of common standards of Cybersecurity measures for national administrative organs and Incorporated Administrative Agencies; the collaborative use of interoperable information systems among national administrative organs; monitoring and analysis of malicious activities against information systems of national administrative organs through information and communications networks or Electronic or Magnetic Storage Media; Cybersecurity exercises and training at national administrative organs; responses to Cybersecurity threats in cooperation, communication and coordination with relevant domestic and foreign parties; the sharing of information regarding Cybersecurity among national administrative organs, Incorporated Administrative Agencies, Special Corporations, and so forth.
(Ensuring of Cybersecurity at CII Operators and Other Related Entities)
Article 14 With regard to Cybersecurity at CII Operators and Other Related Entities, the national government is to provide necessary measures, including the formulation of standards, exercises and training, the promotion of information sharing, and other voluntary activities.
(Facilitation of Voluntary Activities of Private Enterprises, Educational, Research, and Other Organizations)
Article 15 (1) Given the fact that information on intellectual property owned by private enterprises such as small and medium-sized enterprises, educational and research organizations such as universities are critical for the enhancement of Japan's international competitiveness, and in order to promote their voluntary activities for Cybersecurity, the national government is to provide necessary measures, including increasing awareness and understanding about the critical value of Cybersecurity, offering consultation on Cybersecurity, and providing necessary information and advice.
Given the fact that it is important for each member of public to make an effort to voluntarily ensure Cybersecurity, the national government is to provide necessary measures, including offering consultation on Cybersecurity and providing necessary information and advice on actions such as, appropriate choices about products and services in the daily use of electronic computers or the Internet and other advanced information and telecommunications networks.
(Coordination with Multiple Stakeholders)
Article 16 The national government is to aim at the enhancement of coordination among relevant ministries and is to provide necessary measures to enable multiple stakeholders, such as the national government, local governments, CII Operators, and Cyberspace-related Business Entities, to work on Cybersecurity policies in mutual coordination.
(Crackdown on Cybercrime and Prevention of Damage)
Article 17 The national government is to provide necessary measures to crackdown on cybercrime and prevent the spread of damage.
(Action for Matters Which May Critically Affect the Country's Safety)
Article 18 The national government is to provide necessary measures with the intention to: improve and strengthen systems to respond to Cybersecurity concerns at relevant bodies; strengthen the mutual coordination among relevant bodies; and clarify the division of roles among relevant bodies, as actions to address threats which may critically affect the country's safety with respect to Cybersecurity-related incidents.
(Enhancement of Industrial Development and International Competitiveness)
Article 19 Given that it is critical for Japan to have self-reliant capabilities to ensure Cybersecurity, and in order to create new business opportunities, develop sound businesses ', and improve international competitiveness, and so as to make the Cybersecurity sector a "growth industry" which is able to create employment opportunities, the national government is to provide necessary measures related to Cybersecurity, including the promotion of advanced research and development, technological advancements, the development and recruitment of human resources, the strengthening of the market environment and the development of new businesses through the improvement of competitive conditions, and the internationalization of technological safety and reliability standards and the participation in such frameworks on the basis of mutual recognition.
(Promotion of Research and Development)
Article 20 Given that it is critical for Japan to maintain self-reliant technological Cybersecurity capabilities, in order to promote research and development for Cybersecurity as well as the technological and other relevant demonstrations of Cybersecurity, and to expand the distribution of relevant Cybersecurity outcomes, the national government is to provide necessary measures related to Cybersecurity for: the improvement of the environment of Cybersecurity research; the promotion of basic research on technological safety and reliability as well as the promotion of research and development for core technologies; the development of skilled researchers and engineers; the strengthening of coordination among national research institutes, universities, the private sector, and other relevant parties; and international coordination for research and development.
(Development of Human Resources)
Article 21 (1) In close coordination and cooperation with universities, colleges of technology, technical schools, private enterprises, and other relevant entities, the national government is to provide necessary measures to ensure appropriate assignments and employment conditions or treatment of the workforce in the field of Cybersecurity, thereby enabling their functions and work environments to become attractive enough to meet their professional values.
In close coordination and cooperation with universities, technical schools, specialized training colleges, private enterprises, and other relevant entities, for the purposes of recruitment, development, and quality improvement of Cybersecurity-related human resources, the national government is to provide necessary measures, including the utilization of a qualification scheme and training of young technical experts.
(Promotion of Education and Learning, Public Awareness Raising)
Article 22 (1) For the purpose of extensive public awareness raising and understanding about Cybersecurity among the people, the national government is to provide necessary measures including the promotion of education and learning, public awareness activities, and the dissemination of knowledge in the field of Cybersecurity.
In order to promote the measures prescribed under the preceding paragraph, the national government is to provide necessary measures, including the implementation of events for public awareness and the dissemination of information on Cybersecurity and the designation of a specific, focused campaign period to effectively promote Cybersecurity activities.
(Promotion of International Cooperation)
Article 23 In the field of Cybersecurity, to actively carry out Japan's role in the international community and to promote Japan's interests in the community, the national government is to promote: active participation in an international norm setting; confidence building and the promotion of information sharing with foreign countries; international technical cooperation such as active support for Cybersecurity capacity building in developing countries; international cooperation such as crackdowns on cybercrime; and is to provide necessary measures to deepen other countries' understanding of Japan's Cybersecurity.