During the process of vulnerability management, the cybersecurity analyst at a large financial firm has identified a significant vulnerability affecting a critical system. Following the company's protocol, the analyst has to communicate this finding to the appropriate stakeholders. Which of the following options BEST represents the stakeholders to whom the analyst should report this issue?
Software and hardware product vendors who supply technology to the firm
The company's external auditor, the Chief Executive Officer (CEO), and the Chief Financial Officer (CFO)
The IT manager, the Chief Information Security Officer (CISO), and the affected business unit leader
The customer service representative, the public relations manager, and the external auditor