$2\mathrm{.}1$ Security Governance Principles and Desired Outcomes.X$.1054$ provides concepts and guidance on principles and processes for information

security governance, by which organizations evaluate, direct, and monitor the management of information security. X$.1054$ lays out as a key

objective of information security governance the alignment of information security objectives and strategy with overall business objectives and

strategy. List and explain the six principles for achieving the objective of information security governance, the alignment of information security

objectives and strategy with overall business objectives and strategy $(20)$