A Chief Information Security Officer (CISO) is developing a new BIA for the organization. The CISO wants to gather requirements to determine the appropriate RTO and RPO for the organization`s ERP. Which of the following should the CISO interview as MOST qualified to provide RTO/RPO metrics? 

Answer options:

A. Data custodian
B. Data owner
C. Security analyst
D. Business unit director
E. Chief Executive Officer (CEO)

D