Which of the following risk event types should be considered when specifying the risk scope for security incident management?
A) Acts of Nature
B) People and Groups
C) Inanimate objects
D) All of the above