An organization uses information security policies to (5 points)

A. Ensure all employees comply with IT rules
B. describe appropriate use of social media by employees
C. make formal changes to company software
D. track employees' use of email communication