For an organization striving to establish a isaca video

Full Certification Question

For an organization striving to establish a robust information security governance framework, which among the following drivers stands out as a non-negotiable requirement that doesn’t warrant additional validation?