An information security management system (ISMS) is a set of policies concerned with information security management or IT related risks. The idioms arose primarily out of ISO 27001.
The governing principle behind an ISMS is that an organization should design, implement and maintain a coherent set of policies, processes and systems to manage risks to its information assets, thus ensuring acceptable levels of information security risk.
Read more about Information Security Management System: ISMS Description, Need For A ISMS, Critical Success Factors For ISMS
Famous quotes containing the words information, security, management and/or system:
“Rejecting all organs of information ... but my senses, I rid myself of the Pyrrhonisms with which an indulgence in speculations hyperphysical and antiphysical so uselessly occupy and disquiet the mind.”
—Thomas Jefferson (1743–1826)
“Modern children were considerably less innocent than parents and the larger society supposed, and postmodern children are less competent than their parents and the society as a whole would like to believe. . . . The perception of childhood competence has shifted much of the responsibility for child protection and security from parents and society to children themselves.”
—David Elkind (20th century)
“People have described me as a “management bishop” but I say to my critics, “Jesus was a management expert too.””
—George Carey (b. 1935)
“I am fearful that the paper system ... will ruin the state. Its demoralizing effects are already seen and spoken of everywhere ... I therefore protest against receiving any of that trash.”
—Andrew Jackson (1767–1845)