An IS auditor's role in privacy and security is to:

A. assist in developing an IS security strategy.
B. verify compliance with applicable laws.
C. implement risk management methodologies.
D. assist the governance steering committee with implementing a security policy.