Exam GICSP Topic 1 Question 2 Discussion
Actual exam question for GIAC's GICSP exam
Question #: 2
Topic #: 1
Question #: 2
Topic #: 1
According to the DHS suggested patch decision tree, what should the next step be if there is a vulnerability with an available patch, but without an available workaround?
Suggested Answer: C Vote an answer
The DHS (Department of Homeland Security) patch decision tree provides a systematic approach for patch management in ICS environments, balancing security and operational availability.
When a vulnerability is identified and a patch is available, but no workaround exists, the recommended next step is to test and apply the patch (C). This ensures that the system is protected as quickly as possible while verifying that the patch does not disrupt critical ICS operations.
(A) Identifying if the vulnerability affects the ICS typically comes earlier in the decision tree.
(B) Evaluating operational needs versus risk is part of risk management but comes after confirming patch availability.
(D) Identifying the vulnerability and patch is a prerequisite step.
This approach aligns with GICSP's emphasis on structured patch management and testing before deployment in critical environments.
Reference:
GICSP Official Study Guide, Domain: ICS Security Operations & Incident Response DHS ICS Patch Management Decision Tree (Referenced in GICSP) NIST SP 800-82 Rev 2, Section 8.2 (Patch Management)
When a vulnerability is identified and a patch is available, but no workaround exists, the recommended next step is to test and apply the patch (C). This ensures that the system is protected as quickly as possible while verifying that the patch does not disrupt critical ICS operations.
(A) Identifying if the vulnerability affects the ICS typically comes earlier in the decision tree.
(B) Evaluating operational needs versus risk is part of risk management but comes after confirming patch availability.
(D) Identifying the vulnerability and patch is a prerequisite step.
This approach aligns with GICSP's emphasis on structured patch management and testing before deployment in critical environments.
Reference:
GICSP Official Study Guide, Domain: ICS Security Operations & Incident Response DHS ICS Patch Management Decision Tree (Referenced in GICSP) NIST SP 800-82 Rev 2, Section 8.2 (Patch Management)
by Hugo at Mar 27, 2026, 09:22 AM
0
0
0
10
Comments
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Report Comment
Commenting
You can sign-up / login (it's free).