CISM Certified Information Security Manager – Question0819

What of the following is MOST important to include in an information security policy?

A.
Maturity levels
B. Best practices
C. Management objectives
D. Baselines

Correct Answer: C