Who sets the acceptable risk level for an organization?

Who sets the acceptable risk level for an organization?

A.
Government agencies that create regulations

B.
Senior management

C.
Auditors

D.
Security analyst

Explanation:
The risk level that is acceptable for a specific company will be
defined by senior management.