Information Security Governance is the framework that ensures an organization's information security strategies are aligned with business objectives and managed through policies, procedures, and controls. It involves the oversight and accountability of information security risks to protect the organization's information assets and ensure compliance with legal and regulatory requirements.