Which of the following is the information owner responsible for?
A.
Developing policies, standards, and baselines.
B.
Determining the proper classification levels for data within the system.
C.
Integrating security considerations into application and system purchasing decisions.
D.
Implementing and evaluating security controls by validating the integrity of the data.