CompTIA
CAS-003 · Question #215
CAS-003 Question #215: Real Exam Question with Answer & Explanation
The correct answer is B: SIEM, VPN, and firewall. SIEM should provide us with all the info we are missing. a VPN will allow the OT team to connect to the engineering workstation and the firewall will provide a trust boundary between the two networks along with added protection for the unsupported software.
Question
An organization is in the process of integrating its operational technology and information technology areas. As part of the integration, some of the cultural aspects it would like to see include more efficient use of resources during change windows, better protection of critical infrastructure, and the ability to respond to incidents. The following observations have been identified: The ICS supplier has specified that any software installed will result in lack of support. There is no documented trust boundary defined between the SCADA and corporate networks. Operational technology staff have to manage the SCADA equipment via the engineering workstation. There is a lack of understanding of what is within the SCADA network. Which of the following capabilities would BEST improve the security position?
Options
- AVNC, router, and HIPS
- BSIEM, VPN, and firewall
- CProxy, VPN, and WAF
- DIDS, NAC, and log monitoring
Explanation
SIEM should provide us with all the info we are missing. a VPN will allow the OT team to connect to the engineering workstation and the firewall will provide a trust boundary between the two networks along with added protection for the unsupported software.
Community Discussion
No community discussion yet for this question.