Managing information security risks by protecting data, software, people and identities. Strengthening security governance and intelligence frameworks.