The practice of security assessment for Integrated Management Systems (IMS) based on the ISMS models

While a modern management systems creating (include - Integrated Management Systems, IMS), the range of security aspects for core business processes of the organization should be solved. Priority areas of security, especially information security (IS) is increasing due to gain the competitive environment, the emergence of new threats and the considerable complexity of the risk management procedures. IMS is highly relevant to the problem of obtaining security assessment, allowing the short and / or evaluate the prognostic aspects inherent in the organization's risks, to design an effectiveness information security management system (ISMS) and implement efficiency reasonable security measures. In this issue proposed some approaches to creating a models for IMS security assessment in accordance with the requirements both of ISO / IEC 27001:2005 and ISO 22301:2012. Given the relative newness of these standards in the practical application to the research problem in the ISM, the proposed approaches can be useful in the planning of the ISMS, security assessment has created IMS, and, in particular, to solve practical problems – IT-security audits in organizations.