As an outcome of information security governance, strategic alignment provides:

A.
security requirements driven by enterprise requirements.

B.
baseline security following best practices.

C.
institutionalized and commoditized solutions.

D.
an understanding of risk exposure.

Explanation:
Information security governance, when properly implemented, should provide four basic outcomes: strategicalignment, value delivery, risk management and performance measurement. Strategic alignment provides input
for security requirements driven by enterprise requirements. Value delivery provides a standard set of security
practices, i.e., baseline security following best practices or institutionalized and commoditized solutions. Risk
management provides an understanding of risk exposure.