Which of the following is a main function of a company’s information security policy?
A.
It obligates the IT department to basic services.
B.
It defines basic responsibilities for all stakeholders.
C.
It defines the responsibilities of employees and managers.
D.
It defines basic responsibilities for executive management.
Explanation: