According to the approach all around the World, it is no longer possible to provide information security only with technical measures. ‘Information Security Management’ System should be defines. Gizil Enerji has kicked off the ISO 27001 certification process which is supported by European Bank for Reconstruction and Development, the international bank that contributes to the economic and sustaninable development of the country and supports SMEs. At the end of this process which was carried out by Reanda Turkey and Academia, the information assets will be protected safely at Gizil Enerji. Some restrictions on access to the data sources and access control would be kept under control. In this way, the issue of information protection is documented for both itself and its business partners. Gizil Enerji, of which aim is not only being a successful company but also a benchmark company, is taking firm steps in this way.