Which of the following is the BEST reason for reevaluating an information security program?

A. Ineffectiveness of the information security strategy execution
B. Misalignment between information security priorities and business objectives
C. Change in senior management
D. Noncompliance with information security policies and procedures