Free GIAC GICSP Exam Dumps Questions & Answers

Which of the following is a common vulnerability in SCADA systems at Level 3?
Response:

• A.  Limited real-time data processing
• B.  Poor physical access control
• C.  Lack of encryption for inter-device communication
• D.  Use of proprietary software

What is the purpose of conducting a risk assessment when developing an ICS security program?
Response:

• A.  To increase data storage capacity
• B.  To determine network speeds
• C.  To identify and prioritize potential threats
• D.  To simplify software updates

Which characteristic is unique to ICS as compared to traditional IT systems?
Response:

• A.  ICS systems are designed for high user interaction
• B.  ICS systems prioritize data analytics over system availability
• C.  ICS systems require regular software updates for optimal performance
• D.  ICS systems have strict real-time processing requirements

Which ICS-specific protocol was designed to allow efficient communication between field devices and control systems while minimizing bandwidth usage?
Response:

• A.  BACnet
• B.  Hypertext Transfer Protocol Secure (HTTPS)
• C.  Modbus
• D.  Distributed Network Protocol (DNP3)

Which type of attack could compromise Level 3 systems and affect business planning and logistics?
Response:

• A.  Advanced Persistent Threat (APT) attacks
• B.  Distributed Denial-of-Service (DDoS) attacks
• C.  Sensor spoofing
• D.  SQL injection