Following this principle will contribute greatly to the successful implementation and maintenance of information security in your organisation.
The values that you should consider enhancing may be:
This is not an exhaustive list, nor is it a compulsory one. These values are just a starting point. You may already have some of these values, or you may have different ones. If you have no values written down, then now is the time to start. You’ll need to do your own research and come up with values that suit your business.
So you need to determine your company values and how they will enhance society. If they diminish society, then now is the time to upgrade them so they will enhance society.
You can express these values in a mission statement and/or a values statement. Your ISMS should reference this statement in such a manner that you will abide by and obey these principles.
Two things are important to note here: