There are internationally approved practices and standards for information security. Probably the most used and known are the ISO standards, i.e. ISO/IEC 27000 security standard. The ISO 27000 is a family of standards, specially made to help companies and organizations to keep their information assets secure. With their usage, is secured the assets such as intellectual property, financial information, top-secret information as well as personal information. The most used of all of them is the ISO/IEC 27001, who provides requirements for ISMS (information security management system).
The most competitive information security standard on the international level is the ISF standard, a standard that becomes even more popular than the ISO standards we all know. It is the most comprehensive information security standard and it covers a whole spectrum of security arrangements that every business should make in order to keep the risks in association with information systems, with clear statements and acceptable limits.