In recent years, the internet has led to an increase in computer-dependent; enterprises are facing the competition from the globalization of electronic and information technology; in other words, the development of e-strategy and security policy needed to be conducted for reducing the security threats. So, the adoption of ISO 27001 is a hot topic in recent days. Therefore, this study focuses on identifying the critical success factors for implementing ISMS for enterprises and examining the impact of the critical success factors on performance. In this study, we collect a total of 70 enterprises with adoption of ISO 27001 certification as valid samples to do statistical research. The results show that the adoption of ISO 27001 has a significant positive impact on performance, and the management dimension has the most influence of these four dimensions. But, external environment is relatively the smaller one. Also, enterprises with the implementation of ISO 27001 all have a positive impact on the BSC four perspectives of performance; it implies that the implementation of ISO 27001 has benefits on performance of the enterprise. Specifically, dimensions of critical factors all have positive impact on customers perspective. Secondly, management, technology dimensions have positive impact on financial perspective. Thirdly, management, technology and staff dimensions have positive impact on internal process perspective. Eventually, dimensions of critical factors all have positive impact on innovation and learning perspective.