
ISO 9001:2015 is the international standard that specifies requirements for a quality management system (QMS).

ISO/IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization.