In the early 21st century, the use of internet has been growing at a significant pace in the global context. In this regard, both larger organisations and small and medium scale organisations are identified to be depending on internet in order to conduct their operations more adequately. Moreover, in the present modern era ‘Information Security Management’, has been one of the most crucial factors with the help of which organisations can ensure their efficiency and effectiveness more effectively. Thus, most of the small to medium size enterprises (SMEs) and larger organisations are interconnecting security based system, which specifically aims towards safeguarding the crucial digitized form of information from unauthorized access by unreliable sources or individuals. In this context, it can be asserted that unreliable access may significantly hamper the stored digitized data of an organisation in term of ‘disclosure’, ‘modification’, ‘crashing’ or even ‘disruption’. As an effect, the concept of ‘Information Security Management’ has gained significant amount of preference among the small to medium size enterprises within the past few years