The main goal of this research is to identify the factors and components of information technology security with the approach of professional ethics policies of employees in the country's municipalities. This research is applied-developmental and exploratory in nature. The methodology of the research is qualitative and has been conducted using semi-structured interviews with experts. Sampling was done by snowball method from two groups of scientific-academic experts and executive experts and theoretical saturation was reached after 12 interviews. The data from the interviews were analyzed using Maxqda 2018 software and thematic analysis method. The findings of the research showed that among the variables examined in the current research, the average of information technology security based on professional ethics policies was equal to 2.97 and among its indicators, the structural index was the highest and the behavioral index was the highest. They had the lowest average. The results of qualitative data analysis show 6 dimensions (professional ethics, commitment and responsibility, creativity and innovation, human resource management, human resource performance and organization structure) and 22 organizational themes and 210 themes. It was the base. The results showed that success in providing information technology security in municipalities requires simultaneous attention to three contextual, behavioral and structural dimensions. It also shows that organizations that have been able to institutionalize the principles of professional ethics in their organizational culture, in case of security problems, have more ability to manage and control damages.