{"id":13252,"date":"2026-03-20T03:49:03","date_gmt":"2026-03-20T03:49:03","guid":{"rendered":"https:\/\/division.iium.edu.my\/itd\/?page_id=13252"},"modified":"2026-04-02T01:09:33","modified_gmt":"2026-04-02T01:09:33","slug":"isms-objectives","status":"publish","type":"page","link":"https:\/\/division.iium.edu.my\/itd\/isms-objectives\/","title":{"rendered":"ISMS – Objectives"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Objectives of ISMS Implementation<\/b><\/span><\/h3>

The implementation of the Information Security Management System (ISMS) at IIUM is driven by the following strategic objectives:<\/span><\/p>

i. To Protect Information Data and Assets<\/strong><\/span>
To ensure that all forms of information\u2014whether digital, physical, or intellectual\u2014are adequately protected against unauthorized access, disclosure, alteration, and destruction. This includes safeguarding sensitive data such as student records, examination materials, research data, and administrative information.<\/span><\/p>

ii. To Comply with ISO\/IEC 27001:2022 Standard<\/strong><\/span>
To establish and maintain a robust ISMS framework that fully complies with the requirements of ISO\/IEC 27001:2022, thereby enabling the university to achieve formal certification and demonstrate adherence to internationally accepted best practices in information security management.<\/span><\/p>

iii. To Improve Data Confidentiality, Integrity, and Availability (CIA Triad)<\/strong><\/span>
To strengthen the three core principles of information security:<\/span><\/p>

  • Confidentiality<\/strong> \u2013 Ensuring that information is accessible only to authorized individuals<\/span><\/li>
  • Integrity<\/strong> \u2013 Maintaining the accuracy, completeness, and reliability of information<\/span><\/li>
  • Availability<\/strong> \u2013 Ensuring that information and systems are accessible when needed<\/span><\/li><\/ul>

    iv. To Foster a Security-Aware Culture<\/strong><\/span>
    To cultivate a culture of information security awareness and responsibility among staff, students, and stakeholders through continuous training, awareness programmes, and policy enforcement. This includes promoting best practices such as secure password management, phishing awareness, and responsible data handling.<\/span><\/p>

    \u00a0<\/span><\/p><\/div>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/div>\n\t\t\t\t\t<\/div>\n\t\t<\/section>\n\t\t\t\t<\/div>\n\t\t","protected":false},"excerpt":{"rendered":"

    Objectives of ISMS Implementation The implementation of the Information Security Management System (ISMS) at IIUM is driven by the following strategic objectives: i. To Protect Information Data and AssetsTo ensure<\/p>\n","protected":false},"author":37,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"footnotes":""},"class_list":{"1":"page","2":"type-page","3":"status-publish","4":"hentry"},"_links":{"self":[{"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/pages\/13252","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/users\/37"}],"replies":[{"embeddable":true,"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/comments?post=13252"}],"version-history":[{"count":10,"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/pages\/13252\/revisions"}],"predecessor-version":[{"id":13518,"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/pages\/13252\/revisions\/13518"}],"wp:attachment":[{"href":"https:\/\/division.iium.edu.my\/itd\/wp-json\/wp\/v2\/media?parent=13252"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}