The Japanese government has approved a new national cybersecurity strategy covering the next five years, marking a significant step toward strengthening the country’s ability to prevent, detect, and respond to increasingly sophisticated cyber threats.
The strategy, formally adopted at a cabinet meeting on Tuesday, establishes a new coordinated response framework that enables closer cooperation between the police, the Ministry of Defense, and the Self-Defense Forces in neutralizing serious cyberattacks targeting critical national infrastructure.
Growing Threats from State-Sponsored Cyberattacks
The updated policy reflects heightened concern over state backed cyber operations, identifying China, Russia, and North Korea as major sources of cyber threats facing Japan. The strategy warns that cyberattacks are becoming more complex and damaging, particularly as artificial intelligence technologies are increasingly used to enhance attack capabilities.
Government officials noted that cyber incidents are no longer limited to data breaches but now pose risks to essential services, national security systems, and public safety, necessitating a more proactive and centralized defense posture.
Shift Toward Government-Led Cyber Defense
The strategy builds on legislation enacted earlier in 2025 that introduced active cyber defense measures, allowing authorities to monitor digital communications during peacetime to prevent attacks before they cause harm. Under the new framework, Japan aims to establish a government-centered defense and deterrence model.
A key feature of the strategy is the consolidation of all cyber-related intelligence at the National Cybersecurity Office, which was established following the enactment of the active cyber defense law. Centralizing data collection and analysis is expected to improve the speed, accuracy, and effectiveness of identifying and assessing cyber incidents.
Focus on Talent, Training, and Public-Private Cooperation
Recognizing that cybersecurity capabilities depend heavily on skilled personnel, the government plans to expand cybersecurity training programs, strengthen institutional frameworks, and conduct regular drills and simulations to prepare for large-scale cyber incidents.
The strategy also emphasizes enhanced collaboration between the public and private sectors. Operators of critical infrastructure including energy, transportation, finance, and telecommunications will participate in a government led council designed to facilitate two-way information sharing and coordinated responses to cyber threats.
Strengthening International Partnerships
Acknowledging that cyber threats transcend national borders, the strategy highlights the need for deeper cooperation with allied and like-minded countries. Japan aims to expand intelligence sharing, joint training, and coordinated cyber defense initiatives to counter global cyber risks more effectively.
Government Commitment to Unified Action
Speaking at a news conference in Tokyo, Hisashi Matsumoto, Japan’s minister in charge of cybersecurity, said Prime Minister Sanae Takaichi had instructed him to ensure swift and unified implementation of the new strategy.
The prime minister emphasized the importance of public-private collaboration, stronger international partnerships, and seamless coordination across government agencies.
“Cyber threats cannot be addressed by any single actor alone,” Matsumoto said. “Working closely with the private sector and cooperating with other nations is at the heart of our new cybersecurity strategy.”