ISA/IEC 62443 Cybersecurity Fundamentals Specialist — Question 55

Which is the PRIMARY objective when defining a security zone?

Answer options

• A. All assets in the zone must be from the same vendor.
• B. All assets in the zone must share the same security requirements.
• C. All assets in the zone must be at the same level in the Purdue model.
• D. All assets in the zone must be physically located in the same area.

Correct answer: B

Explanation

The correct answer, B, emphasizes that the primary purpose of a security zone is to ensure that all assets within it have the same security requirements, allowing for consistent policy enforcement. Options A, C, and D are incorrect because they focus on vendor uniformity, Purdue model levels, and physical location, which are not the main objectives of defining a security zone.