At present, when all organizations work in an online environment and use an electronic environment, many of these organizations are exposed to cyberattacks and leakage of important information.

This comprises the effort of organizations to protect the information to prevent its misuse. It involves monitoring and assessing security risks and threats, classifying and managing assets, determining security measures, and dealing with security incidents.

Information security management system certification is designated for all organizations operating in all sectors of the economy, regardless of their type, size, or area of operation, namely:

  • In the sector of production
  • In the service sector