According to the RDEC (Research, Development and Evaluation Commission, Executive Yuan) and Technology Advisory Group, "National In formation and Communications Security Development programme (2009-2012)" in promoting information and communication security control will accept one of the options for action, and to provide authority for information on government departments communication security governance maturity assessment tool, expected by the implementation of this program our government authorities information and communication security management system. The purpose of this study is to assess the maturity of x-governmental organizations information and communication security governance by adopting assessment tools the maturity of with intensive interviews to understand the extent of implementation of information security and current practices. As well as what difficulties that the organizations of managing information and communication security will foresee. To adopt a single case study is the research method of this study in order to understand the actual situation of information and communication security governance maturity in the target organizations. The outcome of this study is to state the current level of information and communication security management, possible encounter issues, action items for improvement, and schedule for x-governmental organizations. In this research, the target organizations' operation has a high dependence on IT services. The assessment result shows that the overall weighted average maturity of information and communication security governance falls on "continuous improvement" category. That means x-governmental organizations in information and communication security governance need to be enhanced in the areas of risk management as the major objectives, developing a process to improve information and communication security policies and procedures, requiring regular inspections and audit procedures, and continuous improvement in order to achieve at a good level of information security management.