analyzing an information security program

Respond to the following in a minimum of 175 words:

As a CISO, you are responsible for developing an information security program based on using a supporting framework. Discuss what you see as some major components of an information security program.