As an outcome of information security governance, strategic alignment provides:

A.
security requirements driven by enterprise requirements.
B.
baseline security following best practices.
C.
institutionalized and commoditized solutions.
D.
an understanding of risk exposure.
Explanation:
Information security governance, when properly implemented, should provide four basic outcomes: strategicalignment, value delivery, risk management and performance measurement. Strategic alignment provides input
for security requirements driven by enterprise requirements. Value delivery provides a standard set of security
practices, i.e., baseline security following best practices or institutionalized and commoditized solutions. Risk
management provides an understanding of risk exposure.