Rapid growth on science and technology increases life convenience and efficiency, however the emerging information security issues become serious threat to personnel, organizations and countries. BSI released BS 7799, the Information Security Management Standard, on 1995 for building up the comprehensive ISMS, today’s ISO 27001 is evolved from BS 7799. There is no 100% guaranteed information security, follow the international standard is the best way to minimize the damage caused by information security issues. An ISO 27001 based evaluation form is created to appraisal information security management situation in telecom industry via physical interview and verification. The telecom industry oriented information security management suggestion, ISO 27001 Core Edition, is developed as reference for those who intend to deploy ISMS. IPA (Important-Performance Analysis) is used to illustrate the strategy of performing 133 controls by service providers. The research result indicates telecom service providers reach 90% of conformance level against ISO 27001 controls, and have good performance on “Asset management” and “Compliance” control sections, but need to improve on “Security policy” and “Organization of information security” control sections. The proposed ISO 27001 Core Edition includes 58 important controls which can be the information security management suggestion for telecom industry.