Clause 5 - Leadership

Leadership: This clause emphasises the role of top management in establishing, implementing, and maintaining the ISMS. It requires management to demonstrate their commitment to information security by establishing an information security policy, assigning roles and responsibilities for information security, and providing adequate resources to implement and maintain the ISMS.