The definition of "Supply chain risk management":__________.
A. is defined in a US law and regulation as with related SCM definitions, there is not 100% agreement
B. "a network of people, processes, technology, information, and resources that delivers a product or service. Key supply chains are essential to protecting critical infrastructure; countering economic exploitation; and defending against cyber and technical operations."
C. "specific and credible information that a component, system, or service might be targeted by adversaries."
D. "when the capability and intention of an adversary aligns with the opportunity to exploit a vulnerability."