Digital Agency of Japan Updates ISMAP Cloud Services List, Enhancing Government Cloud Security
Tokyo, Japan – September 1, 2025 – The Digital Agency of Japan (DAJ) has announced the latest update to the Information system Security Management and Assessment Program (ISMAP) Cloud Services List. This routine yet crucial update, published today, reflects the ongoing commitment to ensuring the robust security of cloud services utilized by the Japanese government.
The ISMAP initiative plays a pivotal role in standardizing and scrutinizing the security posture of cloud service providers seeking to offer their services to government agencies. By establishing a comprehensive set of security requirements and conducting thorough assessments, ISMAP aims to build trust and confidence in cloud adoption, thereby facilitating the efficient and secure digital transformation of government operations.
This most recent update to the ISMAP Cloud Services List signifies the inclusion of new services and potentially the re-evaluation of existing ones, ensuring that the list remains current with the evolving landscape of cloud technologies and emerging security threats. The DAJ meticulously vets each service against the established ISMAP criteria, which cover a wide array of security domains, including:
- Information Security Management: Evaluating the provider’s overall framework for managing information security, including policies, procedures, and organizational structures.
- Physical Security: Assessing the measures in place to protect data centers and other critical infrastructure from unauthorized access and environmental hazards.
- Access Control: Scrutinizing mechanisms for managing user identities, authentication, and authorization to prevent unauthorized data access.
- Network Security: Examining network infrastructure and security controls to protect against cyberattacks and data breaches.
- Vulnerability Management: Reviewing processes for identifying, assessing, and remediating security vulnerabilities within the cloud service.
- Incident Response: Evaluating the provider’s preparedness and capabilities for responding to security incidents effectively.
- Business Continuity and Disaster Recovery: Assessing plans and capabilities to ensure service availability and data recovery in the event of disruptions.
The updated ISMAP Cloud Services List serves as an indispensable resource for government ministries and agencies when selecting cloud service providers. By referencing this list, public sector organizations can be assured that the cloud services they engage with have met a stringent security benchmark, thereby mitigating risks and safeguarding sensitive government data.
The Digital Agency of Japan continues to champion the secure and efficient adoption of cloud technologies across the public sector. This regular update to the ISMAP Cloud Services List underscores their proactive approach to cybersecurity and their dedication to modernizing government IT infrastructure with a strong emphasis on safety and reliability.
Citizens and stakeholders are encouraged to refer to the official Digital Agency of Japan website for the most current and detailed information regarding the ISMAP Cloud Services List.
AI has delivered the news.
The answer to the following question is obtained from Google Gemini.
デジタル庁 published ‘ISMAPクラウドサービスリストを更新しました’ at 2025-09-01 08:00. Please write a detailed article about this news in a polite tone with relevant information. Please reply in English with the article only.