The paper presents three standards adopted by ASRO - Romanian Standards Association, which represents the first steps for implementation of a System for Information Security Management. The paper insists on incidents in security information, in conformity with SR ISO/CEI TR 18044:2007.