The main purpose of a security policy is to:
A.
Transfer the responsibility for information security to the users
B.
Provide management with direction and support for information security
C.
Provide detailed steps for performing specific actions
D.
Provide a common framework for development activities
Explanation:
A security policys main purpose is to provide detailed steps for
performing specific security actions.