Evaluation of information security management, with the objective of defining or adapting the roadmap that integrates the initiatives and projects required to deploy the appropriate information security management system.