ISA/IEC 62443 Cybersecurity Fundamentals Specialist — Question 28

Which is the BEST practice when establishing security zones?

Answer options

• A. Security zones should contain assets that share common security requirements.
• B. Security zones should align with physical network segments.
• C. Assets within the same logical communication network should be in the same security zone.
• D. All components in a large or complex system should be in the same security zone.

Correct answer: A

Explanation

The correct answer is A because security zones are designed to group assets with similar security needs, enhancing protection. Option B is incorrect as aligning with physical segments may not consider security requirements. Option C does not address the specific security needs of assets, and option D is misleading as it could create vulnerabilities by placing diverse assets in one zone.