ISO27001

ISO/IEC 27001 is an international standard providing requirements for an information security management system (ISMS). It is a systematic approach to managing sensitive company information so that it remains secure. It includes people, processes and IT systems by applying a risk management process.

http://www.iso.org/iso/home/standards/management-standards/iso27001.htm