Information assests are very important for enterprises. In order to secure these assests, risks should be reduced, availability should be enabled, and information secuirty management system should be supported by executives. When the literature has been reviewed on enterprise information security, it has been encountered that compherensive and up-to-date studies were not available, the studies presented not covering all concepts, most of the studies were delivered by commercial and nontrustworty web sites, and also only covering short desciriptions and explanations about. As a result of those, a review study on enterprises security and standards has been presented in this study. It was concluded that this study would increase security awareness, give details about new standards, conclude the available documents and suggest some issues for enterprises willing to improve their security.