Аннотации:
This article examines the construction and implementation of modern Information Security
Management Systems (ISMS) in the context of evolving cyber threats. Through a mixed-method
research approach combining literature review and practical assessment, the study analyzes key
components and best practices in ISMS development. The research highlights the transition from
reactive security approaches to proactive, risk-based strategies that integrate people, processes, and
technologies. The article proposes guidelines for organizations to enhance their security posture
through advanced ISMS frameworks, with particular attention to emerging technologies such as AI
and machine learning for threat detection. The findings demonstrate that comprehensive ISMS
implementation significantly strengthens organizational resilience against increasingly sophisticated
cyber attacks, while addressing the challenges of regulatory compliance and rapid technological
adoption.
