20.5: Create Test Bed for Elements Not Typically Tested in Production

CSF v1.1 References:

PF v1.0 References:

Group:

Warning icon.

Control is withdrawn in the next version of this control set.

Control Statement

Create a test bed that mimics a production environment for specific penetration tests and Red Team attacks against elements that are not typically tested in production, such as attacks against supervisory control and data acquisition and other control systems.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]