Question

An organization is integrating an ICS and wants to ensure the system is cyber resilient. Unfortunately, many of the specialized components are legacy systems that cannot be patched. The existing enterprise consists of mission-critical systems that require 99.9% uptime.

To assist in the appropriate design of the system given the constraints, which of the following MUST be assumed?

A. Vulnerable components
B. Operational impact due to attack
C. Time critically of systems
D. Presence of open-source software

Answer 1

To ensure cyber resilience in an integrated ICS system with legacy components, the organization must assume vulnerable components, operational impact due to attack, and time criticality of systems.

Step-by-step explanation:

To ensure cyber resilience in an integrated ICS system with legacy components, the following assumptions must be made:

1. Vulnerable components: Since the specialized legacy components cannot be patched, they may have vulnerabilities that could be exploited by attackers.
2. Operational impact due to attack: The organization should assume that an attack on the system could have a significant impact on its operations, potentially resulting in downtime or disruption.
3. Time criticality of systems: Given the mission-critical nature of the existing enterprise, the organization must consider the time sensitivity of the systems and the impact of any disruption.