ISA/IEC 62443 Cybersecurity Fundamentals Specialist — Question 36

Which of the following is the BEST example of detection-in-depth best practices?

Answer options

• A. Firewalls and unexpected protocols being used
• B. IDS sensors deployed within multiple zones in the production environment
• C. Role-based access control and unusual data transfer patterns
• D. Role-based access control and VPNs

Correct answer: B

Explanation

The correct answer, B, highlights the deployment of IDS sensors across various zones, which enhances security by providing multiple layers of detection. Options A, C, and D do not exemplify detection-in-depth as effectively, as they focus more on access control and specific protocol use rather than comprehensive monitoring across different environment zones.