A large retail chain realizes that while there has not been any loss of data, IT security has not been a priority and should become a key goal for the enterprise. What should be the FIRST high-level initiative for a newly created IT strategy committee in order to support this business goal? 

Answer options:

A. Modernizing internal IT security practices
B. Identifying gaps in information asset protection
C. Recruiting and training qualified IT security staff
D. Defining data archiving and retrieval policies

B