Information systems are becoming strategically important in modern companies. Notion of risk associated with secure information system become a concern and an important factor to address the fundamental aspects. This begins from the design phase of a secure information system to its implementation and monitoring of its operation. This paper presents an analysis of secure information system (SIS) design and research design effective in assessing the empirical validation of the concepts. It also assesses how effectively the design would work in my organization.