Which of the following is the BEST approach for an information security manager when developing new information security policies?
A . Create a stakeholder map.
B . Reference an industry standard.
C . Establish an information security governance committee.
D . Download a policy template.
Answer: C