Maturity Models are significant tools to ensure continuous improvement of systems and activities. They follow self-assessment and provide a means of benchmark of these activities linked to best practices. Many Maturity Models have been developed for management Information system and specifically, information security management. In the recent years, management of information security becomes very important for the activities of organizations and helps to increase performance. In this paper, the authors suggest a new maturity model for information security management in order to identify and explore the strength and weaknesses of particular organization's security.