Introduction: Due to the growing number and complexity of cyberattacks on organisations in various sectors of the economy, there is an urgent need to find the most modern approaches to information security management. Outdated approaches and counteracting and combating information incidents cannot fully protect organisations from new threats.

Objectives: The article aims to highlight the main trends and features of implementing modern approaches to information security management in organisations.

Methods: The research methodology is based on a descriptive-analytical design and a mixed approach, combining theoretical aspects of information security management and analysis of secondary data on the status and features of implementing modern approaches to information security management in organisations.

Results: The results show that the growing number and complexity of cyber attacks on organisations lead to significant operational, economic, and reputational risks and losses. As a result, more and more companies are implementing approaches to information security management, among which the most common are holistic and risk-based. Legislative changes in the EU in personal data protection have also been one of the main drivers of information security.

Conclusions: The practical value of the work lies in the systematisation of existing trends and peculiarities of implementing modern approaches to the information security management of organisations.