Term 391
Public cloud
A public cloud is a computing model where third-party providers deliver IT resources like servers, storage, and applications over the internet to multiple customers on a pay-as-you-go basis.
Term 391
A public cloud is a computing model where third-party providers deliver IT resources like servers, storage, and applications over the internet to multiple customers on a pay-as-you-go basis.
Term 392
A globally unique IP address assigned to a device that allows it to communicate directly over the internet.
Term 393
A public subnet is a segment of a cloud Virtual Private Cloud (VPC) or traditional network that has a direct route to the internet via an Internet Gateway, allowing resources within it to send and receive traffic from the public internet.
Term 394
Qualitative risk analysis is a subjective, scenario-based approach to prioritizing information security risks by evaluating their likelihood and potential impact using predefined scales rather than numerical calculations.
Term 395
A quality update policy is a set of rules and schedules that IT administrators use to control which Windows updates are deployed to devices to ensure stability, security, and compatibility.
Term 396
Quantitative risk analysis is a structured process that uses numerical data and statistical methods to calculate the potential financial impact of risks on an organization's assets and projects.
Term 397
Queue storage is a cloud service that lets applications send and receive messages in a first-in, first-out order to decouple components and handle asynchronous workloads.
Term 398
RA-GRS (Read-Access Geo-Redundant Storage) is an Azure storage replication option that provides read access to a secondary region copy of your data, even if the primary region becomes unavailable.
Term 399
RBAC is a method of restricting network access based on the roles of individual users within an organization, where permissions are assigned to roles rather than to individuals directly.
Term 400
Read-access geo-redundant storage (RA-GRS) is a cloud storage replication option that maintains three synchronous copies in one primary region and three asynchronous copies in a secondary region, while allowing read access to the secondary copy even during normal operations.
Term 401
A Reader role is a predefined set of permissions in identity and governance systems that allows a user to view resources and data but not create, modify, or delete anything.
Term 402
A Recovery Services vault is a secure storage container in Microsoft Azure that holds backup data and replication settings for virtual machines, databases, and other cloud resources, enabling you to restore them if something goes wrong.
Term 403
A region is a distinct geographic location where a cloud provider operates multiple data centers that are connected by low-latency networks and provide cloud services.
Term 404
A region pair is two Azure regions within the same geography that are at least 300 miles apart and are used together to provide data residency, compliance, and high availability through paired recovery and updates.
Term 405
Replication is the process of copying and synchronizing data across multiple servers or storage devices to ensure availability, reliability, and fault tolerance.
Term 406
Residual risk is the level of risk that remains after all security controls and countermeasures have been applied.
Term 407
A logical container in Microsoft Azure that holds related resources for an application or solution, enabling unified management, security, and billing.
Term 408
A resource lock is a cloud governance feature that prevents accidental deletion or modification of critical cloud resources by applying a read-only or delete-only restriction at the resource, resource group, or subscription level.
Term 409
A resource policy is a set of rules that controls who can access a specific cloud resource and what actions they can perform on it.
Term 410
A retention policy is a set of rules that determines how long an organization keeps its data and what happens to it when the retention period expires.
Term 411
A retry policy is a set of rules that automatically re-attempts a failed operation after a defined interval, up to a maximum number of tries.
Term 412
Risk is the possibility that an event or action will negatively affect an organization's ability to achieve its goals, often measured in terms of likelihood and impact.
Term 413
Risk acceptance is a risk management strategy where an organization acknowledges a potential risk but decides to tolerate it without taking active measures to reduce or eliminate it.
Term 414
Risk appetite is the amount of risk an organization is willing to accept in pursuit of its objectives, defining the boundaries for decision-making.
Term 415
Risk assessment is the process of identifying, analyzing, and evaluating potential threats to an organization's assets to determine the likelihood and impact of those threats, and to decide on appropriate treatment measures.
Term 416
Risk avoidance is a risk management strategy that involves eliminating any activity, process, or technology that introduces a specific risk, rather than trying to reduce or accept it.
Term 417
Risk management is the process of identifying, assessing, and controlling threats to an organization's capital, earnings, and operations, including IT systems and data.
Term 418
Risk mitigation is the process of reducing the likelihood or impact of a potential security threat to an acceptable level through specific controls and actions.
Term 419
A risk register is a formal document that lists and tracks all identified risks to an IT project, system, or organization, including their assessed impact, probability, and planned responses.
Term 420
A risk score is a numerical value that represents the level of risk associated with a given asset, threat, or vulnerability in a security context.