ISO/IEC 27001
ISO/IEC 27001 is the leading international standard for Information Security Management Systems (ISMS). It defines risk-based requirements for organisational structures, policies, risk assessment procedures and controls. Certification is often a prerequisite for enterprise contracts and supply-chain audits.