The cybersecurity architecture addresses predefined states of operation (SITUATION-3g)
Context and Guidance: The design of the cybersecurity architecture should account for necessary requirements to support predefined states of operation that may need to be engaged by the organisation. For example, monitoring requirements may need to be built into the architecture to help support decisions to shut down assets if there are indicators of a potential outage. As another example, if a safety-related incident occurs and a temporary elevation of privileges is required, the system could automatically increase the verbosity of logging.
Related Practices • Dependency: Implementing this practice depends upon prior implementation of SITUATION-3g. • Progression: This practice is part of a practice progression. Practice progressions are groups of related practices that represent increasingly complete or more advanced implementations of an activity. The practices in this progression include: ARCHITECTURE-1c, ARCHITECTURE-1f, ARCHITECTURE-1j, ARCHITECTURE-1k.