The FIRST step in managing the risk of a cyberattack is to: A、assess the vulnerability impact. B、evaluate the likelihood of threats. C、identify critical information assets. D、estimate potential damage.