Network+Security+Advanced14 min read

What Is SCADA? Security Definition

Also known as: Supervisory Control and Data Acquisition, SCADA system

Reviewed byJohnson Ajibi· Senior Network & Security Engineer · MSc IT Security

This page mentions older exam versions. See the Current Exam Context and Legacy Exam Context sections below for the updated mapping.

On This Page

Quick Definition

SCADA stands for Supervisory Control and Data Acquisition. It is a category of industrial control system (ICS) used to monitor and control physical processes and infrastructure assets. SCADA systems collect real-time data from sensors and field devices (like pumps, valves, and motors) located at remote sites, then transmit that data to a central control center. Operators at the control center use human-machine interfaces (HMIs) to view the data and send commands back to the field devices, adjusting parameters or initiating actions as needed. SCADA is essential for managing critical infrastructure such as electrical power generation and distribution, water and wastewater treatment, oil and gas pipelines, and manufacturing plants. It enables centralized visibility and control over geographically dispersed assets, improving efficiency, safety, and reliability. Without SCADA, operators would need to manually check each remote site, which is impractical for large-scale systems.

Must Know for Exams

On the CompTIA Network+ (N10-008) exam, SCADA is covered under Domain 2.0 (Infrastructure) and Domain 4.0 (Network Security). Specifically, candidates must understand that SCADA systems are a type of industrial control system (ICS) that monitor and control physical devices.

Key exam focus areas include: (1) Identifying SCADA as a specialized network that often uses legacy protocols like Modbus and DNP3, which lack built-in security. (2) Recognizing that SCADA networks should be segmented from corporate IT networks using firewalls, VLANs, or air gaps to prevent unauthorized access. (3) Understanding that SCADA systems prioritize availability and integrity over confidentiality — a power outage is worse than a data leak.

(4) Knowing that common SCADA vulnerabilities include default credentials, unpatched systems, and lack of encryption. (5) Differentiating SCADA from other control systems like DCS (used in a single facility) and BMS (building automation). On Security+ (SY0-601), SCADA appears in Domain 3.

0 (Implementation) and Domain 4.0 (Operations and Incident Response). Exam questions may ask about securing SCADA with network segmentation, using jump boxes for remote access, or applying the principle of least privilege to SCADA operators.

Candidates should also know that SCADA systems are often targets of nation-state attacks and that incident response plans must account for the unique constraints of OT environments (e.g., rebooting a PLC may cause physical damage).

Simple Meaning

Think of SCADA as the central nervous system for a city's utilities. Imagine you are the operator of a huge water distribution network with dozens of pumping stations spread across a county. Without SCADA, you would have to drive to each station every day to check water levels, pressures, and pump status, then manually adjust valves.

That would be slow, expensive, and dangerous. With SCADA, each pumping station has sensors that constantly measure water levels and flow rates. These sensors send data over a network (often using radio, cellular, or satellite links) to a central control room where you sit at a computer screen.

The screen shows a map of the entire system with real-time readings. If a tank is getting low, you can click a button to start a pump remotely. SCADA gives you 'supervisory control' — you oversee the whole system and make high-level decisions, while automated controllers handle the minute-by-minute adjustments.

It is like having a smart dashboard for your entire infrastructure.

Full Technical Definition

SCADA (Supervisory Control and Data Acquisition) is a category of industrial control system (ICS) architecture that enables centralized monitoring and control of geographically dispersed field devices. It operates primarily at the Application Layer (Layer 7) of the OSI model, though it relies on lower layers (Physical, Data Link, Network, Transport) for communication. SCADA systems typically use proprietary or standard communication protocols such as Modbus, DNP3 (Distributed Network Protocol 3), IEC 60870-5, or OPC UA (Open Platform Communications Unified Architecture).

These protocols define the packet structure for reading and writing data points (e.g., analog inputs, digital outputs). A typical SCADA architecture includes: (1) Remote Terminal Units (RTUs) or Programmable Logic Controllers (PLCs) that interface with sensors and actuators; (2) a communication network (wired, wireless, or satellite); (3) a central host system with a Human-Machine Interface (HMI) for operators; and (4) a data historian for logging and analysis.

SCADA systems are designed for high availability and deterministic response times, often using redundant communication paths and failover servers. They differ from Distributed Control Systems (DCS) in that SCADA is optimized for wide-area, geographically distributed assets, while DCS is used for localized, continuous process control within a single facility. SCADA also contrasts with Building Management Systems (BMS), which focus on HVAC, lighting, and access control within a building.

Security is a major concern because SCADA systems were historically air-gapped but are now increasingly connected to corporate IT networks and the internet, making them vulnerable to attacks like Stuxnet.

Real-Life Example

A regional electrical utility company uses SCADA to manage its power grid across three states. The control center in Denver has a wall of screens showing a real-time map of transmission lines, substations, and generation plants. Each substation has an RTU that monitors voltage, current, and breaker status.

When a lightning strike causes a fault on a transmission line near Cheyenne, the RTU detects the overcurrent and sends an alarm via a fiber-optic link to the Denver control center. The HMI displays a red flashing icon on the map at the affected substation. The operator clicks the icon to see detailed data: phase currents, breaker status, and fault distance.

She then uses the HMI to remotely open a tie breaker to isolate the faulted section, preventing a wider blackout. She also dispatches a crew to the site. Meanwhile, the data historian logs every event for post-incident analysis.

Without SCADA, the operator would not know about the fault until a customer called, and she would have to drive hours to manually operate breakers.

Why This Term Matters

IT professionals must understand SCADA because it represents a convergence of operational technology (OT) and information technology (IT). Many organizations now connect SCADA networks to corporate IT networks for data analytics and remote access, creating new security vulnerabilities. IT staff are often responsible for securing these converged networks, implementing firewalls, intrusion detection, and patch management for SCADA systems.

Troubleshooting SCADA communication issues requires knowledge of industrial protocols (Modbus, DNP3) and network topologies. Understanding SCADA is also valuable for career growth, as demand for OT security specialists is high. On exams like Network+ and Security+, SCADA appears in questions about network segmentation, industrial control systems, and security best practices.

Knowing the difference between SCADA and other control systems (like DCS or BMS) is a common exam topic.

How It Appears in Exam Questions

Question Pattern 1: 'Which of the following is a characteristic of SCADA systems?' Wrong answers include 'Used for local process control within a single building' (that's DCS or BMS) and 'Primarily concerned with data confidentiality' (SCADA prioritizes availability). Correct answer: 'Monitors and controls geographically dispersed assets.'

Question Pattern 2: 'A security administrator is asked to secure a SCADA network. Which of the following is the BEST approach?' Wrong answers: 'Apply all critical patches immediately' (may cause downtime), 'Connect SCADA directly to the internet for remote access' (too risky).

Correct answer: 'Implement network segmentation using a firewall and a DMZ.' Question Pattern 3: 'Which protocol is commonly used in SCADA environments?' Wrong answers: 'HTTP' (used for web), 'SNMP' (used for network management).

Correct answer: 'Modbus' or 'DNP3.' Question Pattern 4: 'An organization wants to monitor pipeline pressure from a central location. Which system should they use?' Wrong answers: 'DCS' (for local process control), 'BMS' (for building automation).

Correct answer: 'SCADA.'

Practise SCADA Questions

Test your understanding with exam-style practice questions.

Practise

Example Scenario

Step 1: A water treatment plant installs pressure sensors and flow meters at five remote pumping stations along a 50-mile pipeline. Step 2: Each pumping station has an RTU that reads sensor data every second and stores it locally. Step 3: The RTUs communicate with the central control center using encrypted cellular modems, sending data packets via DNP3 protocol.

Step 4: At the control center, a SCADA server receives the data and updates an HMI display showing a map of the pipeline with real-time pressure readings. Step 5: An operator notices pressure dropping at Station 3, indicating a possible leak. She uses the HMI to send a command to close a valve at Station 2, isolating the section.

The system logs the event and alerts maintenance. The leak is contained within minutes, preventing major water loss.

Common Mistakes

SCADA and DCS are the same thing.

DCS (Distributed Control System) is used for continuous, localized process control within a single facility (e.g., a chemical plant). SCADA is designed for wide-area, geographically distributed assets. They have different architectures and use cases.

SCADA = wide area (pipelines, power grid); DCS = local area (factory floor).

SCADA systems are always air-gapped and therefore secure.

Modern SCADA systems are increasingly connected to corporate IT networks and the internet for remote monitoring and data analytics. This convergence introduces vulnerabilities. Air-gapping is no longer the norm.

Assume SCADA is connected unless told otherwise. Always segment and monitor.

SCADA uses standard IT protocols like HTTP and SNMP.

SCADA environments typically use industrial protocols like Modbus, DNP3, or IEC 60870-5. These protocols were designed for real-time control, not security. HTTP and SNMP are not typical for field device communication.

Think Modbus and DNP3 for SCADA; HTTP and SNMP are for IT networks.

Exam Trap — Don't Get Fooled

{"trap":"The most dangerous misconception is that SCADA systems prioritize confidentiality over availability. Many students choose 'confidentiality' when asked about SCADA security priorities because they think of data protection. In reality, SCADA prioritizes availability first, then integrity, then confidentiality."

,"why_learners_choose_it":"Learners are conditioned by general IT security (CIA triad) where confidentiality often comes first. They see 'data acquisition' and assume data protection is paramount. They forget that in industrial control, stopping a pump could cause a flood or blackout, so uptime is critical."

,"how_to_avoid_it":"Remember the 'SCADA Priority Rule': Availability > Integrity > Confidentiality. Ask yourself: 'What happens if this system goes down?' If the answer is physical damage or safety risk, availability is top priority.

On exams, always pick availability for SCADA questions."

Commonly Confused With

SCADAvsDCS (Distributed Control System)

DCS is used for continuous, localized process control within a single facility (e.g., a refinery). SCADA is used for wide-area, geographically distributed assets (e.g., a pipeline network). DCS has faster control loops and is more integrated; SCADA is more about supervisory control and data collection.

Use SCADA to monitor oil flow across a 500-mile pipeline; use DCS to control the distillation columns inside a refinery.

SCADAvsBMS (Building Management System)

BMS controls building subsystems like HVAC, lighting, and access control within a single building or campus. SCADA controls industrial processes and infrastructure across wide areas. BMS uses protocols like BACnet; SCADA uses Modbus or DNP3.

Use BMS to adjust the temperature in an office building; use SCADA to monitor water pressure across a city's water distribution network.

Step-by-Step Breakdown

1

Step 1: Sensing and Measurement

Field devices (sensors) measure physical parameters like pressure, temperature, flow rate, or voltage. These sensors produce analog signals (e.g., 4-20 mA) or digital signals (e.g., contact closure) that represent the measured value.

2

Step 2: Data Acquisition by RTU/PLC

A Remote Terminal Unit (RTU) or Programmable Logic Controller (PLC) at the remote site reads the sensor signals. It converts analog signals to digital values, performs local control logic if programmed, and stores the data temporarily.

3

Step 3: Communication to Central Host

The RTU/PLC transmits the data to the central SCADA host over a communication network. This can be wired (fiber, serial), wireless (radio, cellular), or satellite. Protocols like Modbus or DNP3 format the data into packets.

4

Step 4: Data Processing and Display

The SCADA host receives the data, processes it, and updates the Human-Machine Interface (HMI). The HMI displays real-time values, alarms, and trends on a graphical screen. Operators can see the entire system status at a glance.

5

Step 5: Operator Command and Control

The operator uses the HMI to send commands back to the field. For example, clicking a button to start a pump or change a setpoint. The command travels through the network to the RTU/PLC, which actuates the corresponding device (e.g., a motor starter or valve).

Practical Mini-Lesson

SCADA (Supervisory Control and Data Acquisition) is a system that allows operators to monitor and control remote industrial equipment from a central location. The core concept is 'supervisory control' — the operator makes high-level decisions (e.g.

, start a pump, open a valve) while automated controllers handle the precise execution. How it works: Sensors (e.g., pressure transducers, temperature probes) measure physical quantities and send analog or digital signals to an RTU or PLC.

The RTU converts these signals into data values and transmits them over a communication network (e.g., radio, satellite, Ethernet) to a central SCADA host. The host runs HMI software that displays the data graphically.

Operators can send commands back through the same path to change setpoints or actuate devices. Comparison to similar technologies: DCS (Distributed Control System) is used for continuous process control within a single facility (e.g.

, a chemical plant) and has faster control loops. BMS (Building Management System) controls HVAC, lighting, and security in a building. SCADA is optimized for wide-area, geographically dispersed assets like pipelines and power grids.

Configuration notes: SCADA networks often use serial communication (RS-232/RS-485) or Ethernet. Common protocols include Modbus (simple, widely supported) and DNP3 (more robust, supports time-stamping and event reporting). Security is critical: never expose SCADA directly to the internet; use firewalls, VPNs, and jump boxes.

Key takeaway: SCADA is the backbone of critical infrastructure. On exams, remember that SCADA prioritizes availability and integrity, uses specialized protocols, and must be segmented from corporate networks.

Memory Tip

Mnemonic: 'SCADA = Supervise Critical Assets, Data Acquired.' Think of a 'scada' (like a scada fish) that keeps watch over a school of smaller fish (the remote devices). The scada fish sees everything and can give commands. For exams: SCADA = wide area, DCS = local area.

Covered in These Exams

Current Exam Context

Current exam versions that test this topic — use these objectives when studying.

Legacy Exam Context

Older materials may mention these exam versions, but learners should use the current objectives for their target exam.

N10-008N10-009(current version)
SY0-601SY0-701(current version)

Related Glossary Terms

Frequently Asked Questions

Is SCADA the same as ICS?

No. ICS (Industrial Control System) is a broad category that includes SCADA, DCS, PLCs, and other control systems. SCADA is a specific type of ICS focused on supervisory control and data acquisition over wide areas. All SCADA systems are ICS, but not all ICS are SCADA.

How is SCADA different from a PLC?

A PLC (Programmable Logic Controller) is a field device that executes control logic locally (e.g., turning a motor on/off based on sensor input). SCADA is the overall system that supervises multiple PLCs/RTUs from a central location. PLCs are components within a SCADA system.

What is the most common SCADA protocol?

Modbus is the most widely used SCADA protocol due to its simplicity and open standard. DNP3 is also common, especially in electrical utilities, because it offers more features like time-stamping and event reporting. Both lack built-in security.

Why are SCADA systems considered high-risk for cyber attacks?

SCADA systems control critical infrastructure (power, water, oil/gas). They often run on legacy hardware/software, use insecure protocols, and have poor patch management. Connecting them to IT networks increases attack surface. A successful attack can cause physical damage or safety hazards.

Can SCADA use cloud services?

Yes, modern SCADA systems increasingly use cloud-based platforms for data storage, analytics, and remote access. However, this introduces latency and security concerns. Best practices include using encrypted connections, strong authentication, and network segmentation.

Summary

1. SCADA (Supervisory Control and Data Acquisition) is an industrial control system used to monitor and control geographically dispersed infrastructure assets like power grids, pipelines, and water treatment plants. 2.

Its key technical property is that it prioritizes availability and integrity over confidentiality — keeping the lights on is more important than hiding data. 3. The most important exam fact: SCADA networks must be segmented from corporate IT networks using firewalls or air gaps, and they use specialized protocols (Modbus, DNP3) that often lack security.

Remember: SCADA = wide-area control; DCS = local process control.