SCADA

Chrisean Pritchett

4/7/2026

Professor Duvall

SCADA IS?

BLUF: SCADA is a type of software used to control and manage large infrastructures.

Background

SCADA stands for Supervisory Control and Data Acquisition. It is a type of software created to control and monitor threats in infrastructure systems. SCADA Collects data through using PLC or RTC to collect and create status reports for humans to read and act upon. To allow for human activity SCADA is linked to Human Machine Interfaces that let SCADA share it data to the human operators in the form of schematics, diagrams, ect.

Vulnerabilities: The main threat to SCADA is unauthorized access to software, Viruses, and Packet control hacks. Any unauthorized access is a huge risk as SCADA is often vital infrastructure that hackers can threaten, such as water systems. Viruses are much the same problem, but packet attacks have very high chance to take control of SCADA due there being less security that blocks access to SCADA hosts.

Mitigation

Scada vendors have created hosted remote platforms offering SCADA services so other user don’t have to install it on their systems allowing the vendors to work as a VPN against hackers.

Conclusion

Inconclusion SCADA is a software that is used to control many type of infrastructure on  a large scale do it data communicative abilities,  but is vulnerable to packet attacks and unauthorized users.

Source: Using SCADA to Protect Critical Infrastructure and Systems(ARTICAL)

Chrisean, Pritchett

3/4/2026

Professor Duval

Firewall Policy

BLUF: The firewall policy for Egg Teck Industries is made up of five questions what to deny, what is allowed, what is recorded, who is alerted, and how are auditing the fire wall.

• What to deny: The default deny for Egg Teck is that all incoming traffic is denied unless permitted by the organization.
• What is allowed: Every allow rule requires business justification, a named owner for responsibility, and an expiration date for when to stop allowing a partnered organization from going past the fire wall.
• Mandatory logging: All traffic going in and out of fire wall must be recorded in order to understand where a problem could have occurred. Additionally, any request to access the firewall must be recorded as employees are also a vulnerability.
• Alerts: The system must be able to alert security personnel immediately of any attempts to breach the firewall, unpermitted traffic and personnel that don’t have the authority to access the firewall.
• Audits: Weekly audits must take place in order to check for hidden security threats not alerted by the system and one before every update.

Conclusion

Inconclusion Egg Teck Industry firewall policy is centered around what to let in, what to keep out, and how maintain security within the company to execute security measures if faced with a threat.

Chrisean, Pritchett

2/22/2026

Framework Editorial

Prompt: I need a one-page synopsis of the differences between the NIST Cybersecurity Framework 1.1 and 2.0

BLUF: The NIST Cybersecurity Framework (CSF) version 2.0, released in February 2024, represents a significant evolution from version 1.1 (released in 2018). It addresses evolving cyber threats, broadens applicability, and strengthens governance while maintaining the voluntary, flexible, risk-based approach.

Key Structural Differences

• Core Functions — CSF 1.1 had 5 functions: Identify, Protect, Detect, Respond, Recover.
• CSF 2.0 adds a sixth: Govern (placed centrally, influencing all others), resulting in 6 functions: Govern, Identify, Protect, Detect, Respond, Recover. [CP1] Govern emphasizes leadership, strategy, policy, roles, oversight, and alignment with enterprise risk management.
• Categories and Subcategories — CSF 1.1: 23 categories, 108 subcategories. CSF 2.0: 22 categories, 106 subcategories (slight reduction for clarity/consolidation, with refined wording and reorganization).[CP2] 

Major Substantive Changes and Enhancements

• Expanded Scope — CSF 1.1 primarily targeted U.S. critical infrastructure sectors. CSF 2.0 applies to all organizations globally (any size, sector, public/private), removing infrastructure-specific language for universal relevance.

• Governance Emphasis — CSF 1.1 focused mainly on operational/technical outcomes. CSF 2.0 elevates governance as a foundational element, integrating cybersecurity into business/enterprise risk management, requiring senior/executive involvement, and addressing organizational context, risk strategy, and accountability.

• Supply Chain Risk Management (C-SCRM) — CSF 1.1 acknowledged supply chain risks minimally (e.g., scattered references). [CP3] CSF 2.0 significantly expands dedicated guidance, incorporating it prominently (especially under Govern), reflecting lessons from high-profile supply chain attacks.

• Implementation Support — CSF 1.1 offered general guidance. CSF 2.0 introduces “Implementation Examples” for subcategories (practical, actionable ways to achieve outcomes), plus improved references to other NIST resources (e.g., Privacy Framework, Secure Software Development Framework, NICE Workforce Framework).

• Profiles, Tiers, and Measurement — Both versions use Profiles (Current/Target) and Tiers (Partial → Adaptive rigor). CSF 2.0 enhances these with better guidance on creating/using them, plus stronger focus on measuring outcomes (quantitative/qualitative metrics) to assess effectiveness and progress.

Summary

CSF 2.0 is not a complete overhaul but a refinement and expansion: it builds on 1.1’s strengths while addressing gaps in governance, supply chain security, broad applicability, and practical usability. Organizations using 1.1 can transition by mapping existing programs to the new Govern function and updated subcategories (NIST provides transition/change analysis spreadsheets). The update promotes cybersecurity as a strategic, enterprise-wide priority rather than solely a technical IT concern.

For official details, refer to NIST’s CSF 2.0 document and the 1.1-to-2.0 core transition changes overview on nist.gov[CP4] 

Not Mentioned in comments

Background Differences:

• I added more spacing between each point.
• I added a BLUF Title to the first two sentences.

Large Deleted Fluff:

• Other Improvements — Greater emphasis on integration with broader risk management; clearer language and abstraction levels; better alignment with international standards (e.g., ISO/IEC); and a suite of supporting resources (quick-start guides, mappings, community tools).[CP5] 

---

 [CP1]You should delete this, because when you were the core function of CSF 1.1 you already listed the others out. All you want to do here is explain govern.

 [CP2]This is a slight Nitpick, but instead of using the colons just put (has) as you say how many categories and sub categories each version has. For example (CSF 1.1 has 23 categories, 108 subcategories.).

 [CP3]I don’t understand how this this adds to supply chain risk management.

 [CP4]This is helpful,but I’m unsure if this needed due to this being a separate source. On the other hand more sources are usually always helpful and this could be away for the AI to credit it findings.

 [CP5]This part wasn’t specific enough to be relevant to the report and some of these improvements were mentioned in earlier parts. Such as guides and international standards.

Chrisean, Pritchett

2/15/2026

Ms. Duvall

The Importance of CIA

BLUF: The CIA Triad is important to cybersecurity specialists because it is the core principles and guidelines that are used for creating secure systems.

Confidentiality

To start Confidentiality Is making sure the end user information is private and only they have access. For example, the thousands of messages you get are usually for you and only you due to the work of the cyber security system maintaining your privacy. The importance is crucial for maintaining the trust user has in the system and often utilizes password to verify authorization.

Integrity

Next Integrity is different from confidentiality as it focuses on maintaining the end user information. The message you get should be exactly what the sender sent without any tampering. To implement this cyber security system, check the data once it is sent and when it arrives to verify the authenticity of the data.

Availability

Lastly, Availability Is the how easy it is for the end user to access their data. Password should be complicated, but it shouldn’t take an hour to get to an email. Finding the fine line between accessibility and security is the importance of Availability for cyber security specialists.

Athorization vs Authentication

Additionally, authorization is how end user gains the authority to access their data, while authentication is the security of how the end user accesses their information. For example, when creating a account you give your email and phone number to gain authority of your account as they check you. Authentication utilizes passwords to maintain security to stop other people from using your authority to mess with your information.

In Conclusion the CIA triad is important to cyber security specialist because it protects privacy, authenticity and ease of use; also, that authorization is different from authentication because one is your authority and the other is your security.

Sources-

• Chai Article
• What is the CIA triad and why is it important? Fortinet. https://www.fortinet.com/resources/cyberglossary/cia-triad