The University of Sydney Page 142. The purpose of security policy in ISO/IEC 27002 standard is _______.A)To establish a vision for security and direct corporate resourcesB)To develop and create structures and processes for managing securityC)To identify and classify assets to prioritiseimportance and ensure protection D)To reduce human error, misuse and abuse by personnel