Reevaluation of risk is MOST critical when there is: 

Answer options:

A. a change in security policy.
B. resistance to the implementation of mitigating controls.
C. a change in the threat landscape.
D. a management request for updated security reports.

C