Which is one of the PRIMARY goals of providing a framework addressing secure product development life-cycle requirements?
Available Choices (select all choices that are correct)
A. Aligned development process
B. Aligned needs of industrial users
C. Well-documented security policies and procedures
D. Defense-in-depth approach to designing
What type of security level defines what a component or system is capable of meeting?
Available Choices (select all choices that are correct)
A. Capability security level
B. Achieved security level
C. Design security level
D. Target security level
What is the name of the missing layer in the Open Systems Interconnection (OSI) model shown below?
A. Control
B. Protocol
C. Transport
D. User
Which of the following ISA-99 (IEC 62443) Reference Model levels is named correctly?
Available Choices (select all choices that are correct)
A. Level 1: Supervisory Control
B. Level 2: Quality Control
C. Level 3: Operations Management
D. Level 4: Process
Security Levels (SLs) are broken down into which three types?
Available Choices (select all choices that are correct)
A. SL-1, SL-2, and SL-3
B. Target.capability, and achieved
C. Target.capability, and availability
D. Target.capacity, and achieved
In which layer is the physical address assigned?
Available Choices (select all choices that are correct)
A. Layer 1
B. Layer 2
C. Layer 3
D. Layer 7
What is the FIRST step required in implementing ISO 27001?
Available Choices (select all choices that are correct)
A. Create a security management organization.
B. Define an information security policy.
C. Implement strict security controls.
D. Perform a security risk assessment.
Which of the following PRIMARILY determines access privileges for user accounts?
Available Choices (select all choices that are correct)
A. Users' desire for ease of use
B. Authorization security policy
C. Common practice
D. Technical capability