Which of the following is the BEST approach for an information security manager when developing new information security policies? 

Answer options:

A. Create a stakeholder map.
B. Reference an industry standard.
C. Establish an information security governance committee.
D. Download a policy template.

C