Last time, I discussed evaluating alternative strategies for building your information security management system and rationalizing your…