The document discusses governance frameworks for managing corporate information security. It describes drivers for security governance like legislation and risk mitigation. Several frameworks are mentioned, including ISO27001, AS133, and ISF best practices. Adopting a governance framework provides advantages like not needing to reinvent processes and having auditable best practices. The impact of internal and external influences on information is explored. Leading security governance frameworks and relevant legislation are also summarized.