Explosive growth in use of information systems for all manner of applications in all walks of life has made provision of proper security essential. Users must have confidence that information systems will operate as intended without unanticipated failures or problems. Issues concerning privacy, availability, confidentiality and integrity must be addressed. However, the majority of information systems users still think that security issues related to the use, confidentiality, privacy and availability of the systems are the responsibilities of the information systems managers. The issue at hand now is whether in the light of imminent security threats, compounded by the increasingly International nature of information systems, this responsibility still rests with managers only. This paper looks at security concerns related to information systems, identifies the threats and suggests how the security of information .systems should be handled.