A security ____ is an outline of the overall information security strategy for the organization and a roadmap for planned changes to the information security environment of the organization.
framework. It incorpoates goals and objectives. This is necessary to protect the security of the business or institutional entity. Planned changes are essential to keep up with new security advancements.
