Vision
Establishment
Procedures
Implementation
Monitoring
Messages
About ISMS
Why ISMS
Implementation
Role of Mgt.
Training
Security Forum
Success Factors
PDCA Model
Learn ISMS

Introduction
Everyone has roles and responsibilities for maintaining security in organization. The management, employees, vendors and contractors have different roles in developing and implementing an effective security process. In the implementation and sustenance of the system, main responsibility lies with the Management.

Management's responsibilities
Management's responsibility goes beyond the basics of support. They must set the entire system. Management is responsible for overseeing the development, implementation and maintenance of ISMS. This includes defining the information security objectives of the organization, allocating an amount of money to be invested in information security, and ensuring the compliancy and enforcement of Implementation.

To make the implementation of ISMS a success, it is good to distribute the responsibilities throughout the organization depending on the organizational size, nature of operations, and other factors.

Management should also ensure integration of security controls throughout the organization by governing the policies and practices that are consistently applied.