Which of the following situations presents the GREATEST challenge to creating a comprehensive IT risk profile of an organization?

A. Manual vulnerability scanning processes
B. Inaccurate documentation of enterprise architecture (EA)
C. Organizational reliance on third-party service providers
D. Risk-averse organizational risk appetite