Within a security governance framework, which of the following is the MOST important characteristic of the information security committee? The committee: 

Answer options:

A. conducts frequent reviews of the security policy
B. has established relationships with external professionals
C. has a clearly defined charter and meeting protocols
D. includes a mix of members from all levels of management

D