An organization has decided to implement a security information and event management (SIEM) system. It is MOST important for the organization to consider:

A. industry best practices.
B. data ownership.
C. log sources.
D. threat assessments.