期刊名称:Interdisciplinary Description of Complex Systems - scientific journal
印刷版ISSN:1334-4676
出版年度:2019
卷号:17
期号:3-A
页码:485-491
DOI:10.7906/indecs.17.3.7
语种:English
出版社:Croatian Interdisciplinary Society Provider Homepage: http://indecs.eu
摘要:It is increasingly important for organizations to set up an Information Security Management System (ISMS) to fulfil their business interests and their legal compliance. The main purpose of these systems is to properly protect the information owned or managed by the organization. Often, the developed ISMS complies with the external regulatory environment, but contains unenforceable rules that impede work, so it is unable to fulfil its function. In order to prevent security incidents, it is not enough to ensure legal compliance. The enforceability of these policies is gaining increasing importance in order to avoid hindering work processes. This article identifies quality parameters and guidelines in order to improve quality, enable and improve enforceability of ISMS systems, in order to fulfil their purpose, mainly protection of company information assets. By adhering to these parameters and guidelines organisations can improve their ISMS systems which enforces security of their information assets.
