Ensure that entity resources are protected from loss, destruction, disclosure, copying, sale, or other misuse.
i. Security control goals relate to protecting entity resources from loss, destruction, disclosure, copying, sale, or other misuse. These are meant to manage risks identified in the enter risk-management process.