Question
The Chief Information Security Officer (CISO) of a power generation facility is concerned about being able to detect missing security updates on the critical infrastructure
The Chief Information Security Officer (CISO) of a power generation facility is concerned about being able to detect missing security updates on the critical infrastructure in facility. Most of this critical infrastructure consists of ICS and SCADA systems that are maintained by vendors, and the vendors have warned the CISO that proxying network to cause a DoS condition. Which of the following would be BEST to address the CISOs concerns while keeping the critical systems functional?
A. Configuring the existing SIEM to ingest all log files properly
B. Implementing a passive vulnerability scanning solution
C. Deploying a data diode for internal websites
D. Adding more frequent antivirus and anti-malware signature updates
E. Adjusting file access rules to use the concept of least privilege
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
Concepts of Database Management
Authors: Philip J. Pratt, Joseph J. Adamski
7th edition
978-1111825911, 1111825912, 978-1133684374, 1133684378, 978-111182591
