The key terms and concepts used within the standard

The resources needed for ISMS implementation

The corrective actions for ISMS improvement

The intended audience and boundaries of the ISMS

Leadership

Context of the organization

Support

Operations

To continuously improve ISMS

To evaluate the effectiveness of ISMS

To demonstrate leadership in managing information security

To provide resources and infrastructure

To implement and maintain controls for information security

To develop a plan for ISMS implementation

To list normative references

To define key terms and concepts

By establishing a culture of information security

By continuously improving based on performance evaluations

By providing necessary resources

By defining the scope of ISMS