Term 781
Shared responsibility
Shared responsibility is a cloud security model where the cloud provider and the customer each own distinct parts of security and compliance duties.
Acronym study
Terms 781–810 of 956 220-1102 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 781
Shared responsibility is a cloud security model where the cloud provider and the customer each own distinct parts of security and compliance duties.
Term 782
The shared responsibility model is a framework that defines which security and compliance tasks are handled by the cloud provider and which are handled by the customer.
Term 783
A shared secret is a piece of data, like a password or cryptographic key, known only to the parties involved in a secure communication, used to verify identity and protect information.
Term 784
A shell is a computer program that provides a user interface to access an operating system's services, typically by accepting text commands.
Term 785
A shield in IT networking is a conductive layer around a cable or device that blocks electromagnetic interference to protect signal integrity.
Term 786
Shift left security is the practice of integrating security testing and controls earlier in the software development lifecycle, rather than waiting until after deployment.
Term 787
Short Message Service (SMS) is a text messaging service that allows short messages to be sent between mobile phones, pagers, and other devices using standardized communication protocols.
Term 788
A social engineering attack where an attacker observes a victim's screen or keyboard to steal passwords or sensitive information.
Term 789
A side-channel attack is a type of security exploit that gathers information from a system by observing its physical or secondary outputs—such as timing, power consumption, or electromagnetic emissions—rather than directly attacking the software or cryptographic algorithm.
Term 790
SIEM (Security Information and Event Management) is a system that collects and analyzes log data from across an IT environment to detect and respond to security threats in real time.
Term 791
A SIEM query is a search command used in a Security Information and Event Management system to find, filter, and analyze security-related log data from across an organization's IT environment.
Term 792
SMTPS is a secure version of the Simple Mail Transfer Protocol that uses encryption to protect email messages during transmission between email servers.
Term 793
A Service Level Agreement (SLA) is a contract between a service provider and a customer that defines the level of service expected, including metrics like uptime, response time, and penalties for non-compliance.
Term 794
SLE (Single Loss Expectancy) is the monetary loss expected each time a specific risk event occurs, calculated as asset value times exposure factor.
Term 795
Slow performance means a computer, application, or network takes longer than expected to complete tasks, often due to resource limits, software conflicts, or hardware degradation.
Term 796
Small Computer System Interface (SCSI) is a set of standards for connecting and transferring data between computers and peripheral devices like hard drives, scanners, and tape drives.
Term 797
A compact version of a standard RAM stick, mainly used in laptops and small form factor computers to provide system memory.
Term 798
SMB is a network file-sharing protocol that allows applications to read, write, and request services from server programs in a computer network.
Term 799
SNMP (Simple Network Management Protocol) is an application-layer protocol used to collect and organize information about managed devices on IP networks and to modify that information to change device behavior.
Term 800
A network protocol used to collect and organize information about managed devices on IP networks and to modify that information to change device behavior.
Term 801
SOAR (Security Orchestration, Automation, and Response) is a technology stack that helps security teams automate responses to threats by integrating various security tools and standardizing workflows.
Term 802
A Security Operations Center (SOC) is a centralized team that monitors, detects, analyzes, and responds to cybersecurity incidents to protect an organization's information systems.
Term 803
Social engineering is the psychological manipulation of people into divulging confidential information or performing actions that compromise security.
Term 804
Software as a Service (SaaS) is a cloud computing model where users access software applications over the internet on a subscription basis, without installing or maintaining the software locally.
Term 805
A software-defined network (SDN) is a networking approach that separates the control plane (how traffic is directed) from the data plane (where traffic moves), allowing network administrators to manage and optimize traffic flow centrally through software instead of relying on individual hardware switches and routers.
Term 806
A solid-state drive (SSD) is a storage device that uses flash memory to save data permanently, with no moving parts, making it much faster and more durable than a traditional hard disk drive.
Term 807
A sovereign region is a physically and logically separate set of cloud data centers within a single country, designed to meet strict data residency and compliance requirements imposed by local laws.
Term 808
A Switch Port Analyzer (SPAN) is a feature on network switches that copies traffic from one or more ports to a monitoring port for analysis without disrupting normal network operations.
Term 809
Spear phishing is a targeted cyberattack in which a criminal sends a fraudulent email that appears to come from a trusted source, aiming to trick a specific person or organization into revealing sensitive data or installing malware.
Term 810
A Spot Instance is an unused cloud computing resource that a provider offers at a deep discount but that can be reclaimed by the provider with little notice.