Exam GICSP Topic 1 Question 60 Discussion

Actual exam question for GIAC's GICSP exam
Question #: 60
Topic #: 1
What is a recommended practice for securing historians and databases whose purpose is to feed data back into the control processes?

Suggested Answer: A Vote an answer

For systems such as historians and databases critical to control processes, it is important to maintain comprehensive security monitoring, including:
Auditing both successful and failed login attempts (A) to detect unauthorized access attempts and provide accountability.
Placing systems in the same DMZ (B) may increase exposure; segmentation is usually preferred.
Using domain admin accounts (C) increases risk by providing excessive privileges; least privilege is recommended.
HTTP (D) is not recommended for management due to lack of encryption; secure protocols like HTTPS or SSH should be used.
GICSP emphasizes rigorous auditing and monitoring as essential for detecting and preventing insider threats and unauthorized access to critical ICS data.
Reference:
GICSP Official Study Guide, Domain: ICS Security Operations & Incident Response NIST SP 800-82 Rev 2, Section 6.3 (Database Security) GICSP Training on Database and Historian Security

by Gilbert at Nov 10, 2025, 07:45 AM

Comments

Chosen Answer:
This is a voting comment (?) , you can switch to a simple comment.
Switch to a voting comment New
Nick name: Submit Cancel
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

0
0
0
10