Question 1

Which step is essential before conducting a detailed cyber risk assessment?

Options :

A : Preparing workshop materials and establishing the assessment team

B : Updating the companies website

C : Purchasing new security software

D : Planning the end-of-year party

Answer: A

Question 2

What is the key purpose of establishing Security Level Targets (SL-Ts) according to ZCR 5.6?

Options :

A : To document existing vulnerabilities

B : To calculate the cost of security measures

C : To satisfy regulatory requirements

D : To communicate the desired level of security for a zone or conduit

Answer: D

Question 3

What factor contributes to the rise in attacks on Industrial Automation and Control Systems (IACS)?

Options :

A : Use of proprietary communications protocols

B : Knowledge of exploits and tools readily available on the Internet

C : Fewer personnel with system knowledge having access to IACS

D : The move away from commercial off the shelf (COTS) systems, protocols, and networks

Answer: D

Question 4

What is the first step in the cyber risk assessment process according to ISA 62443-3-2?

Options :

A : Identify Threats

B : Determine Consequence & Impact

C : Establish Zones and Conduits

D : Identify System Under Consideration (SUC)

Answer: D

Question 5

Which of the following can serve as a barrier device in a segmented network?

Options :

A : Domain controller

B : Router

C : Unmanaged switch

D : VPN

Answer: B