What is the primary purpose of Security Governance in the context of ISC2 CC - Certified in Cybersecurity?