ISA/IEC 62443 IC37 CYBERSECURITY MAINTENANCE
EXAM QUESTIONS AND ANSWERS WITH COMPLETE
SOLUTIONS GRADED A++
Defense in depth
The application of multiple cybersecurity measures in layers, ensuring that if one
measure is breached, others still provide protection, thereby enhancing the security of
automated industrial facilities.
System hardening
The process of securing a system by reducing its attack surface
Access controls
Policies, procedures, and technical controls governing system resource use
Maintain phase goal
Ensuring security controls from previous phase remain effective
IACS Cybersecurity Lifecycle phases
Assess, Design & Implement, and Maintain
Firewall
Device or program controlling traffic flow between networks/devices
Key components of defining the scope before conducting an assessment?
System architecture diagrams, network diagrams, asset inventory, criticality
assessment, process flow, data flow, business processes
, Remote Access Services benefit
Remote support of IACS
Dedicated anti-virus server location for IACS?
Best located in an IACS DMZ
Detecting abnormal activity for known exploits is best performed by using which
detection tools?
Signature-based detection tools: These inspect objects against a blacklist and are
optimal for identifying known exploits.
Host Intrusion Detection Systems (HIDS) location
Normally located on a single host
What is necessary to install, configure and maintain cybersecurity systems?
Necessitates a high level of cyber skills for installation, configuration, and maintenance
Which standard requires that an organization shall implement an incident
response plan?
ISA/IEC 62443-2-1: Security program requirements for IACS asset owners.
Change management importance
All changes to the IACS environment must be done in a controlled manner to minimize
risk
Prior to full system recovery, what should be performed to address the source of
the problem?
Remediation efforts should be performed to fix the source of the problem before
proceeding with full system recovery.
Four forensic process phases
EXAM QUESTIONS AND ANSWERS WITH COMPLETE
SOLUTIONS GRADED A++
Defense in depth
The application of multiple cybersecurity measures in layers, ensuring that if one
measure is breached, others still provide protection, thereby enhancing the security of
automated industrial facilities.
System hardening
The process of securing a system by reducing its attack surface
Access controls
Policies, procedures, and technical controls governing system resource use
Maintain phase goal
Ensuring security controls from previous phase remain effective
IACS Cybersecurity Lifecycle phases
Assess, Design & Implement, and Maintain
Firewall
Device or program controlling traffic flow between networks/devices
Key components of defining the scope before conducting an assessment?
System architecture diagrams, network diagrams, asset inventory, criticality
assessment, process flow, data flow, business processes
, Remote Access Services benefit
Remote support of IACS
Dedicated anti-virus server location for IACS?
Best located in an IACS DMZ
Detecting abnormal activity for known exploits is best performed by using which
detection tools?
Signature-based detection tools: These inspect objects against a blacklist and are
optimal for identifying known exploits.
Host Intrusion Detection Systems (HIDS) location
Normally located on a single host
What is necessary to install, configure and maintain cybersecurity systems?
Necessitates a high level of cyber skills for installation, configuration, and maintenance
Which standard requires that an organization shall implement an incident
response plan?
ISA/IEC 62443-2-1: Security program requirements for IACS asset owners.
Change management importance
All changes to the IACS environment must be done in a controlled manner to minimize
risk
Prior to full system recovery, what should be performed to address the source of
the problem?
Remediation efforts should be performed to fix the source of the problem before
proceeding with full system recovery.
Four forensic process phases
