The purpose of this study is to analyze the current situation of ICT companies in Kosovo in reference to ISO standards implementation and potential benefits if such standards are implemented. Security of information has become a very sensitive issue, and now local and international organizations pay particular attention to this issue due to the laws and regulations in place for data protection. Over one million certificates were issued during 2016 in 187 countries around the world by the International Organization for Standardization (ISO) and a large number of them in European Union countries. More than 220 companies have been registered in the ICT sector in Kosovo, among which 120 are considered to be active under the Ministry of Trade and Industry. Approximately 20% of these businesses are directly involved in the BPO sector (Business Process Services) and / or CSC (Support Centers). ICT development is considered an industrial revival, but it also carries many risks. To get the potential for innovation that promotes economic and social growth, the ICT sector needs to be well managed. During this research conducted at the end of 2017, the results show that less than 30% of ICT companies in Kosovo are certified with management system based on ISO standards. Another finding from this research is that a considerable number of them do not meet the minimum criteria to be certified under one of the ISO standard schemes. It can be concluded that internal processes lack best practices or recommendations of ISO standards and this is one of the reasons hindering their growth and reaching their potential.