The primary goal of the Information Systems Security Association, Inc. (ISSA) is to promote management practices that will ensure the confidentiality, integrity; and availability of organizational information resources. To achieve this goal, members of the Association must reflect the highest standards of ethical conduct and technical competence. Therefore, ISSA has established the following Code of Ethics and requires its observance as a prerequisite and continuation of membership and affiliation with the Association.

As an applicant for membership and as a member of ISSA, I have in the past and will in the future:

• Perform all professional activities and duties in accordance with the law and the highest ethical principles;
• Promote good information security concepts and practices;
• Maintain the confidentiality of all proprietary or otherwise sensitive information encountered in the course of professional activities;
• Discharge professional responsibilities with diligence and honesty;
• Refrain from any activities which might constitute a conflict of interest or otherwise damage the reputation of employers, the information security profession, or the Association; and
• Not intentionally injure or impugn the professional reputation or practice of colleagues, clients, or employers.