Nowadays, issues regarding information security are present overwhelmingly in the context of network and internet. However, in terms of the investments necessary to create an information security management project, would require the integration of many fields such as manpower, financial, material, know-how, and technologies. If the unwillingly careless leak occurred, not only would all the investments be in vain, but also the incalculable impact would occur for the defense system. With the intention of achieving to the ultimate goal of information security management, this project aims to get through the ”Initiation, planning, executing, controlling and closing” processes and methods.The purpose of this research are: (1) Learning the knowledge of ISO27001 ISMS, (2) Providing a systematic execution model of ISO27001, and (3) Constructing the project management model being completely in accordance with ISMS of ISO27001 in helping MND with its introducing and build-up ”MND' s ISMS”.