choose one of the most dominant InfoSec management models, including national and international standards-based models. What makes this model one of the most dominant?

choose one of the most dominant InfoSec management models, including national and international standards-based models. What makes this model one of the most dominant? What should be taken into consideration when selecting the most appropriate model or framework for an organization?