What is the primary purpose of an Information Security Management System (ISMS) as defined by ISO/IEC 27001?
-
A
To establish, implement, maintain, and continually improve information security controls
-
B
To automate vulnerability scanning across all systems
-
C
To manage employee security awareness training
-
D
To define software development lifecycle processes