The issue of information security provision at the enterprise conducting its activity at the market is highly important in modern economic conditions. Not only industrial espionage, but also continuous alteration of the current legislation, dynamic development of information technologies and systems, global integration of economic processes and harsh competitive environment start to loom large. To ensure sustainable operation of an organization, reinforcement of its image, increase of interest from potential clients and investors, development, formation and certification of information security management system (hereinafter – ISMS) is required.
ISMS will become an important competitive strength demonstrating that:
- the organization’s processes for IS provision are able to meet the needs of external users in the long term,
- risks are assessed and managed,
- the level of consequences and conceivable actual damage from the IS incidents are minimized.