This is a report on a survey of responsibilities and basic initiatives of cyber infrastructure operators, conducted as part of the FY2024 SME Foreign Economic Policy Promotion Project by METI. The survey was compiled by Mizuho Research & Technologies, Ltd. in March 2025.
Purpose and Implementation of the Survey
This survey aims to systematically investigate and analyze the responsibilities and basic initiatives that cyber infrastructure operators should fulfill in order to promote international expansion of SMEs in the cybersecurity field. It is positioned as basic material for considering policy support approaches for strengthening cybersecurity and improving international competitiveness of SMEs amid advancing digitalization and sophisticated cyber threats.
Literature Survey on Domestic and International Trends
The survey conducts comprehensive literature research on domestic and international policy trends, regulatory environments, and industry trends related to cyber infrastructure operators. It provides detailed analysis of the evolution of cybersecurity policies in major countries, legal requirements for cyber infrastructure operators, and international standardization trends, clarifying the institutional environment when Japanese SMEs expand overseas.
Holding Working Groups and Collecting Expert Knowledge
During the survey process, working groups consisting of cybersecurity field experts, related operators, government officials, etc. were held to collect practical knowledge and policy recommendations. This enabled specific examination of not only theoretical analysis but also challenges and solutions in actual business operations.
Creation of Guidelines (Draft)
As a survey outcome, guidelines (draft) regarding responsibilities and basic initiatives that cyber infrastructure operators should comply with were created. These guidelines aim to serve as practical guidance when SMEs seek international expansion in the cybersecurity field, systematically organizing technical requirements, operational standards, compliance matters, etc.
Policy Implications and Summary
Based on survey results, policy recommendations for strengthening international competitiveness of SMEs in the cybersecurity field are summarized. Particularly from the perspectives of clarifying responsibilities of cyber infrastructure operators, enhancing SME support systems, and supporting compliance with international standards, specific directions for policy measures are indicated.
The article evaluates this as important survey research results for promoting policy infrastructure development to facilitate international expansion of SMEs in the cybersecurity field, providing valuable knowledge contributing to the formulation of highly effective guidelines.