Formerly known as ISO 17799, which of the following security standards is universally recognized as the standards for sound security practices and is focused on the standardization and certification of an organization’s Information Security Management System (ISMS)?

A.
ISO 15408

B.
ISO 27001

C.
ISO 9001

D.
ISO 9146

Explanation:
B:ISO 27000 series will assist organizations of all types to understand the fundamentals, principles, and concepts to improve the protection of their information assets. ISO 15408 is the common criteria which includes the evaluation criteria for IT security. ISO 9001 provides the requirements for quality management system. ISO 9126 is an international standard for the evaluation of software quality. Page 679.