ISO 27001:2013 Information Security Management Systems (ISMS): The ISMS standard lays down the standard for having management control over information assets of an organisation. It helps organisations assess their information security risks, threats and vulnerabilities, and evolve a comprehensive set of information security controls to mitigate those risks.
This standard is of particular importance to organisations where data is the most important business asset whose security and control is an important operational requirement.