Information Security Management System (ISMS)

1. What is ISMS?
2. The scope of ISMS Implementation
3. Parties involved
4. Effective date

1. What is ISMS?

Information Security Management System is based on the standard IS0 / IEC 27001: 2013 Information Technology – Security Techniques – Information Security Management System (ISMS). Compliance with the Standard ISO / IEC 27001: 2013 is a guarantee to Stakeholders and Customers that relevant information is protected and safe from damage, loss or misuse.

2. Scope of ISMS Implementation

University Information System Database Management (SMU), includes human resources, information, processes and technologies in UKM Information Technology Centre. The University Information System database (SMU) supports the critical process of UKM including the following systems:

• Staff Information Management
• Student Information Management
• University Financial  and Accounting Management
• University Research Management

3. Parties involved

1. Information Technology Centre
2. PPUKM Department of Information Technology
3. Registrar’s Office
4. The Bursary
5. Department of Building and Maintenance
6. Risk Management Office
7. Office of Occupational Safety and Health

4. Effective date

May 1, 2014