In article the concept of construction and expansion of structure of Standard model of Policy of management of information security is proved on the basis of the international standards and foreign approaches to their introduction taking into account belief of employees in achievement of the objectives.

information security, management, policy, belief, standard

1. ISO/IEC 27001:2013 Informatsionnaya tekhnologiya. Metody i sredstva obespecheniya bezopasnosti. Sistemy menedzhmenta informatsionnoy bezopasnosti. Trebovaniya [ISO/IEC 27001:2013 Information Technology. Methods and Means of Ensuring of Safety. Systems of Management of Information Security. Requirements]
2. Р ИСО/МЭК 27001-2006 Informatsionnaya tekhnologiya. Metody i sredstva obespecheniya bezopasnosti. Sistemy menedzhmenta informatsionnoy bezopasnosti. Trebovaniya [Р ISO/MEK 27001-2006 Information Technology. Methods and Means of Ensuring of Safety. Systems of Management of Information security. Requirements]
3. Arnason S. T., Willett K. D. How to Achieve 27001 Certification: An Example of Applied Compliance Management: Auerbach Publications, 2008.- 352 р.
4. Osintsev D. V. [Persuasion and Coercion in System of Public Administration: Whether Classification is Correct?]. Police Right, 2008, № 1 (11), pp. 9–12. (in Russ.)
5. Astakhova L.V. The Concept of the Information-security Culture. Scientific and Technical Information Processing, 2014, vol. 41, № 1, pp. 22–28.