An information security management system (ISMS) is a set of policies concerned with information security management or IT related risks. The idioms arose primarily out of ISO 27001.
The governing principle behind an ISMS is that an organization should design, implement and maintain a coherent set of policies, processes and systems to manage risks to its information assets, thus ensuring acceptable levels of information security risk.
Read more about Information Security Management System: ISMS Description, Need For A ISMS, Critical Success Factors For ISMS
Famous quotes containing the words information, security, management and/or system:
“Information networks straddle the world. Nothing remains concealed. But the sheer volume of information dissolves the information. We are unable to take it all in.”
—Günther Grass (b. 1927)
“We now in the United States have more security guards for the rich than we have police services for the poor districts. If you’re looking for personal security, far better to move to the suburbs than to pay taxes in New York.”
—John Kenneth Galbraith (b. 1908)
“The care of a house, the conduct of a home, the management of children, the instruction and government of servants, are as deserving of scientific treatment and scientific professors and lectureships as are the care of farms, the management of manure and crops, and the raising and care of stock.”
—Catherine E. Beecher (1800–1878)
“We are now going through a period of demolition. In morals, in social life, in politics, in medicine, and in religion there is a universal upturning of foundations. But the day of reconstruction seems to be looming, and now the grand question is: Are there any sure and universal principles that will evolve a harmonious system in which we shall all agree?”
—Catherine E. Beecher (1800–1878)