Cavirin offers assessment models to support technical aspects of ISO/IEC 27002:2013, which gives guidelines for organizational information security standards and practices including the selection, implementation, and management of controls taking into consideration the organization's information security risk environment. Among its many benefits, the standard enables users to:
- implement commonly accepted information security controls
- further evolve a risk based approach in developing their own information security management guidelines.
- International Standards can help governments and regulators achieve public policy goals