Due to new regulations, a company has decided to institute an organizational vulnerability management program and assign the function to the security team. Which of the following
frameworks would BEST support the program? (Select two.)
A. COBIT
B. NIST
C. ISO 27000 series
D. ITIL
E. OWASP