ISM-0723 Removed History Priority should 2010 The CISO should ensure compliance with the ISM through facilitating a continuous program ofaccreditation based on security risk management.