Information Security Management System (ISMS)
It is vital to look at security from a holistic perspective, and to have a security management methodology for organisation; that is what Information Security Management System (ISMS) is all about. In Malaysia , security breaches continue to increase over the years and they come in different types and forms. ISMS help organisations in terms of improving their information security infrastructure and keeping their private data and information intact.
History of ISMS
ISMS was initially the initiative from the UK Department of Trade and Industry in 1995 and its main objective was to provide a code of practice for information security practitioners. ISMS concern the security of information whether it is in physical or logical form and focuses on three areas: the confidentiality, integrity and availability of information or usually referred to as CIA. ISMS is made up of two parts: Part 1 which is known as ISO/IEC 17799:2000 which is the code of practice for information security management, and Part 2 which is known as BS7799-2:2002 which provides specifications with guidance for use for ISMS implementation.
Benefits of implementing ISMS :