Which of the following are objectives of an information systems security program?

A.
Threats, vulnerabilities, and risks

B.
Security, information value, and threats

C.
Integrity, confidentiality, and availability.

D.
Authenticity, vulnerabilities, and costs.

Explanation:
There are several small and large objectives of a security program, but the main three principles in
all programs are confidentiality, integrity, and availability. These are referred to as the CIA triad. –
Shon Harris All-in-one CISSP Certification Guide pg 62