An information security management system (ISMS) is a set of policies concerned with information security management or IT related risks. The idioms arose primarily out of ISO 27001.
The governing principle behind an ISMS is that an organization should design, implement and maintain a coherent set of policies, processes and systems to manage risks to its information assets, thus ensuring acceptable levels of information security risk.
Read more about Information Security Management System: ISMS Description, Need For A ISMS, Critical Success Factors For ISMS
Famous quotes containing the words information, security, management and/or system:
“Information networks straddle the world. Nothing remains concealed. But the sheer volume of information dissolves the information. We are unable to take it all in.”
—Günther Grass (b. 1927)
“...I lost myself in my work and never felt that marriage would give me the security I wanted. I thought that through the trade union movement we working women could get better conditions and security of mind.”
—Mary Anderson (1872–1964)
“People have described me as a “management bishop” but I say to my critics, “Jesus was a management expert too.””
—George Carey (b. 1935)
“The twentieth-century artist who uses symbols is alienated because the system of symbols is a private one. After you have dealt with the symbols you are still private, you are still lonely, because you are not sure anyone will understand it except yourself. The ransom of privacy is that you are alone.”
—Louise Bourgeois (b. 1911)