Monday, October 17, 2016

Mitigating Risks in Static Environments

Are you planning to take the Security+ exam? Do you understand how to mitigate risks in static environments?

For example, can you answer this Security+ practice question?

Q. Homer noticed that several generators within the nuclear power plant have been turning on without user interaction. Security investigators discovered that an unauthorized file was installed and causing these generators to start at timed intervals. Further, they determined this file was installed during a visit by external engineers. What should Homer recommend to mitigate this threat in the future?

A. Create an internal CA.

B. Implement WPA2 Enterprise.

C. Implement patch management processes.

D. Configure the SCADA within a VLAN.

Check your answer here.