The term “ISMS” is an abbreviation for “Information Security Management System” as described in ISO 27001. An ISMS, as any ISO Management System, is a framework which describes the set of steps required to meet the defined goals. It entails the respective objectives, roles and responsibilities, processes and procedures as well as related documentation.