KKI - Information Security Managment System (ISMS)

Introduction
Information security Forum addresses information security from a business perspective. It clarifies, resolves the information security breaches and issues and provides the solutions to meet the business needs.

Responsibilities of Information Security Forum
The ISF is the executive level forum and multiple responsibilities lies on its shoulder:

Provision of a strategic lead to company-wide security improvement programs

Review of existing and developing new security policies in line with ISO 27001 key controls

Promotion of security awareness throughout the organization

Co-ordination of new security initiatives

Review of major security breaches and agreement of strategies to prevent reoccurrence

Identification of issues, which may impact upon legal & regulatory security requirements

Approval of Business Continuity Plans

Members of ISF
All departmental heads are ISF members. Besides, CEO, Chief Analyst (CA) and information security officer are also ISF members. CEO is the forum Chairman. On requirement, other staff of the organization or/and persons from external organizations may also be invited as observers or participants to attend ISF meetings.

All concerned departmental heads are responsible to provide respective feedback to the ISO, for the preparation of organizational measurement sheet.

During the meeting, all respective members are responsible to contribute as per agenda points and provide feedback on the progress over the assigned task.

ISF is responsible to ensure that the lesson learnt document has been developed, shared and disseminated to all concerned.

The ISF is the executive level forum and multiple responsibilities lies on its shoulder: