Security policies should be aligned MOST closely with:

A. industry best practices.

B. organizational needs.

C. generally accepted standards.

D. local laws and regulations.

Explanation:

The needs of the organization should always take precedence. Best practices and local regulations are important, but they do not take into account the total needs of an organization.