SCADA risk management

Anonymous
timer Asked: Apr 4th, 2017
account_balance_wallet $15

Question Description

Q1. Patching ICS/SCADA systems are riskier than a traditional IT systems, and the book refers to three fundamentals of patching ICS/SCADA. Find an article about ICS/SCADA patch and /or change management and how it relates to at least one of the fundamentals. How might you use the information you find to an organization such as in your final project.


Q2. Identify, Measure, and Manage Risks

1. Identify risks:

Risk is a function of M, AV, T, and V:

R = f (M, AV, T, V)

R – risk, M – mission importance, AV – asset values, T – threats, V – vulnerabilities

2. “What”: what is the problem/challenge in managing risks and auditing the ICS? Explain how you might measure

“Why”: why do you need and want to solve the problem?

“How”: how do you economically solve it?

Identify Security Controls

3. Select security controls based on results from “Industrial Control System Processes Employed” and “Profile ICS Devices”:

Reference either ICS CERT CSET or NIST 800-53, Security and Privacy Controls for Federal Information Systems and Organizations,

http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-53r4.pdf

Tutor Answer

prof_mikewillims
School: UT Austin

Attached.

(Surname1)

Student
Professor
Course Details
Date of Submission
SCADA Risk Management
Question 1

In typical solar power plants, SCADA systems are often used as one of the control
systems within the facility. It is noteworthy to mention that SCADA systems remain very
vulnerable to external threats. As such, system vulnerabilities can result in service interruptions
which can adversely affect the consumers of solar services.

Patching is essential in enhancing the security of SCADA systems of any typical solar
power plant. Worth mentioning, patching in SCADA systems refers to conducting computer
repair on various Software programs either to repair bugs within the system or reducing system
vulnerability. However, executing patches within ICS systems can result in a host of irreversible
changes within the network systems which can affect various output services.

In order to avoid i...

flag Report DMCA
Review

Anonymous
Excellent job

Similar Questions
Related Tags

Brown University





1271 Tutors

California Institute of Technology




2131 Tutors

Carnegie Mellon University




982 Tutors

Columbia University





1256 Tutors

Dartmouth University





2113 Tutors

Emory University





2279 Tutors

Harvard University





599 Tutors

Massachusetts Institute of Technology



2319 Tutors

New York University





1645 Tutors

Notre Dam University





1911 Tutors

Oklahoma University





2122 Tutors

Pennsylvania State University





932 Tutors

Princeton University





1211 Tutors

Stanford University





983 Tutors

University of California





1282 Tutors

Oxford University





123 Tutors

Yale University





2325 Tutors