When creating an information security governance program, which of the following will BEST enable the organization to address regulatory compliance requirements? 

Answer options:

A. Guidelines for processes and procedures
B. A security control framework
C. An approved security strategy plan
D. Input from the security steering committee

A