Implementation of Information Security Management Systems for Data Protection in Organizations: A systematic literature review

• Published in: ENVIRONMENT-BEHAVIOUR PROCEEDINGS JOURNAL
• Main Authors: Marhad, Siti Suhaida; Goni, Siti Zaleha Abd; Sani, Mad Khir Johari Abdullah
• Format: Proceedings Paper
• Language: English
• Published: E-IPH LTD UK 2024
• Subjects: Environmental Sciences & Ecology
• Online Access: https://www-webofscience-com.uitm.idm.oclc.org/wos/woscc/full-record/WOS:001283042200023
• ISSN: 2398-4287
• DOI: 10.21834/e-bpj.v9iSI18.5483

This systematic literature review investigates the implementation of Information Security Management Systems (ISMS) as a pivotal strategy for safeguarding organizational information in the digital era. Focusing on key factors influencing ISMS implementation, its impact on data protection, and the methodologies employed, the review underscores the significance of awareness and training in fostering compliance. Emphasizing the ISO/IEC 27001 standard as a prevalent framework, the study reveals positive impacts on organizational performance, financial outcomes, corporate reputation, and branding. The findings advocate for a comprehensive and structured approach to information security, urging future research to explore diverse organizational contexts and industries for a nuanced understanding of ISMS practices and their impact on organizational agility.