CISSP PRACTICE QUESTIONS – 20210901

Effective CISSP Questions

Industrial control system (ICS) encompasses several types of control systems, including supervisory control and data acquisition (SCADA) systems, distributed control systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC) often found in the industrial sectors and critical infrastructures. Which of the following statements about ICS is incorrect? (Wentz QOTD)
A. ICS can be used to control assets scattered over thousands of square kilometers.
B. ICS in manufacturing industries is usually located within a confined factory or plant-centric area.
C. SCADA systems are designed to collect information within factories, plants, or facilities.
D. ICS controls the physical world and IT systems manage data.

Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.

My suggested answer is C. SCADA systems are designed to collect information within factories, plants, or facilities.

Wentz’s book, The Effective CISSP: Security and Risk Management, helps CISSP and CISM aspirants build a solid conceptual security model. It is a tutorial for information security and a supplement to the official study guides for the CISSP and CISM exams and an informative reference for security professionals.

The following is a summary of NIST SP 800-82 R2:

Control systems are used in many different industrial sectors and critical infrastructures, including manufacturing, distribution, and transportation.

Industrial control system (ICS) is a general term that encompasses several types of control systems, including supervisory control and data acquisition (SCADA) systems, distributed control systems (DCS), and other control system configurations such as Programmable Logic Controllers (PLC) often found in the industrial sectors and critical infrastructures.

ICS are used to control geographically dispersed assets, often scattered over thousands of square kilometers, including distribution systems such as water distribution and wastewater collection systems, agricultural irrigation systems, oil and natural gas pipelines, electrical power grids, and railway transportation systems.

A typical ICS contains numerous control loops, human interfaces, and remote diagnostics and maintenance tools built using an array of network protocols on layered network architectures.

SCADA systems are used to control dispersed assets where centralized data acquisition is as important as control.

DCS are used to control production systems within the same geographic location.

Reference


工業控制系統 (ICS) 包含多種類型的控制系統,包括監控和數據採集 (SCADA) 系統、分佈式控制系統 (DCS) 以及其他控制系統配置,例如在工業領域和關鍵基礎設施中常見的可編程邏輯控制器 (PLC) 。下列關於 ICS 的說法那一項不正確? (Wentz QOTD)
A. ICS 可用於控制分散在數千平方公里的資產。
B. 製造業中的 ICS 通常位於封閉的工廠或以工廠為中心的區域內。
C. SCADA 系統旨在收集工廠、工廠或設施內的信息。
D. ICS 控制物理世界,IT 系統管理數據。



Leave a Reply