Which of the following is MOST effective in the strategic alignment of security initiatives?
A . Key information security policies are updated on a regular basis.
B . A security steering committee is set up within the IT department.
C . Business leaders participate in information security decision making.
D . Policies are created with input from business unit managers.
Answer: D