The international standard ISO 27001 specifies requirements for the continual improvement of the information security management system.
https://ias-certification.com/....iso-27001-certificat