The part of the ICS used to perform the monitoring and control of the physical process. This includes all control servers, field devices, actuators, sensors, and their supporting communication systems.

See NIST SP 800-82 Rev. 2 under Control for more information.

See security control and privacy control.

See NIST SP 800-37 Rev. 2 for more information.

A measure that is modifying risk. (Note: controls include any process, policy, device, practice, or other actions that modify risk.)

See the following for more information:

NIST SP 1800-15B under Control from NISTIR 8053

NIST SP 1800-15C under Control from NISTIR 8053

The means of managing risk, including policies, procedures, guidelines, practices, or organizational structures, which can be of an administrative, technical, management, or legal nature.

See NIST SP 800-160 Vol. 2 Rev. 1 from ISACA Glossary of Terms for more information.

Purposeful action on or within a process to meet specified objectives.

See NIST SP 800-160v1r1 for more information.

The mechanism that achieves the action.

See NIST SP 800-160v1r1 for more information.

Share this Post