What is the primary role of a committee within the governance structure of an information security program?
To manage daily security operations and respond to incidents
To provide strategic direction and oversight for specific security matters
To perform regular security audits and penetration testing
To develop and write code for secure software applications