ISO 27001 is an International Organization for Standardization standard that provides requirements for information security management systems. Organizations can be certified in ISO 27001; however, it is not a requirement for any markets.
An ISMS is a structured approach to protecting and securing sensitive electronic data within an organization. ISO 27001 assists with definition of roles for people, computers and data transfer processes. It also assists various types of organizational entities with assessing risk to cyber-security systems. The 2013 standard is available for free through ISO's online browsing platform, and the latest revision is available for purchase from the ISO store.