Information Security Management (ISM)
The process that ensures the confidentiality, integrity, and availability of an organization's assets, information, data, and IT services. Information security management is typically part of an organizational approach to security management that goes beyond the scope of the IT service provider and includes the management of paper-based documents, access rights, phone calls, etc. for the entire organization.