A lot of IT Security Framework exists at the moment that can be used in company security. Below wrote simple comparison for each.
ISO Family (27001, 17799, 20000) (International Standard Organization’s security management standards)
A framework of standards that provides best practices for information security management
ITIL (IT Infrastructure Library)
ITIL is a cohesive best-practices framework drawn from the public and private sectors internationally. It describes the organization of IT resources to deliver business value, and documents processes, functions, and roles in IT Service Management
COSO(Committee of Sponsoring Organizations of the Treadway Commission)
Voluntary private-sector organization dedicated to improving the quality offi nancial reporting through business ethics, effective internal controls, and corporate governance.
COBIT(Control Objectives for Information and related Technology)
An IT governance framework and supporting toolset that allow managers to bridge the gap between control requirements, technical issues, and business risks.
FISMA (Federal Information Security Management Act of 2002)
FISMA imposes a mandatory set of processes that must follow a combination of Federal Information Processing standards (FIPS) documents, the special publications SP – 800 series issued by NIST and other legislation pertinent to federal information systems.
OCTAVE (Operationally Critical Threat, Asset, and Vulnerability Evaluation)
A risk – based strategic assessment and planning technique for security.
CMMI (Capability Maturity Model Integration)
A process improvement approach that provides organizations with the essential elements of effective processes.