To search, Click below search items.


All Published Papers Search Service


A Study of Effect of Information Security Management System[ISMS] Certification on Organization Performance


Cheol-Soon Park, Sang-Soo Jang, Yong-Tae Park


Vol. 10  No. 3  pp. 10-21


While the rapid spread of Internet usage enables many tasks that can be performed in only offline environments to be performed in cyber space as well, new security threats such as hacking and viruses have also increased. For that reason, enterprises and organizations recently require comprehensive and systematic information security management system (ISMS) instead of sporadic security management. Consequently, the Information Security Management System (ISMS) certification system has been in effect in Korea since July 2001. As of December 2009, 76 enterprises have been certified, and more than 100 ISO27001 certifications have been issued. As such, since the introduction of the ISMS certification system in Korea, the demand for the certification has been steadily increasing, and it is now recognized as an integral means of strengthening the competitiveness in an enterprise. However, the qualitative aspects of certification regarding the benefit of ISMS have been continuously questioned by actual customers. In order to clarify the situation and remove such doubts, this study will substantiate the fact that development and certification of ISMS positively affect the business performance of enterprises so that they will recognize the effect of obtaining ISMS certification and eventually prevent security accidents and improve their business performance by developing ISMS.


Information Security, Information Security Management System(ISMS), ISMS Certification, Business Performance