CAS-003 · Question #330
CAS-003 Question #330: Real Exam Question with Answer & Explanation
The correct answer is C: Modify to a high-baseline set of controls.. The correct answer is C: Modify to a high-baseline set of controls. In NIST RMF guidance (particularly NIST SP 800-82 for ICS/SCADA environments), a unique or high-consequence industrial control system operated by a government may warrant escalating beyond the initial moderate ba
Question
Options
- ACheck for any relevant or required overlays.
- BReview enhancements within the current control set.
- CModify to a high-baseline set of controls.
- DPerform continuous monitoring.
Explanation
The correct answer is C: Modify to a high-baseline set of controls. In NIST RMF guidance (particularly NIST SP 800-82 for ICS/SCADA environments), a unique or high-consequence industrial control system operated by a government may warrant escalating beyond the initial moderate baseline. Because ICS environments often have elevated safety, availability, and operational integrity requirements - and because misconfigurations or breaches can have catastrophic physical consequences - the next logical step when the moderate baseline is deemed insufficient for a unique environment is to move to the high baseline to ensure a broader set of controls is considered and applied. While overlays (option A) can customize baselines for specific communities of interest, the question asks what to do 'next' to determine if additional controls are needed, making the high-baseline upgrade the appropriate answer before scoping narrower customizations.
Community Discussion
No community discussion yet for this question.