An organization is looking for a framework to measure the efficiency and effectiveness of their Information Security Management System.
Which of the following international standards can BEST assist this organization?
A . Payment Card Industry Data Security Standards (PCI-DSS)
B . International Organization for Standardizations C 27005 (ISO-27005)
C . International Organization for Standardizations C 27004 (ISO-27004)
D . Control Objectives for Information Technology (COBIT)
Answer: C