In order to quickly take action to the rapidly changing in school of electronic environment, information technology has been implemented to assist a lot of work. The impact of information security incidents occur in school as the increasing of electronic environment. Not only to improve the information security but also to reduce the probability of impact risk, information security management system (ISMS) has become the standard of information security management in college or university. In the case of Tung Fang Design Institute, coordination and communication for all members, starting a series of certified procedures to study how to build awareness and implementation of the ISMS.