Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

CompTIA CySA+ CS0-003/Acronyms/Part 14

Acronym study

CS0-003 Acronyms — Part 14 of 18

Terms 391–420 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 13Part 14 of 18Part 15 →

Term 391

S3 lifecycle policy

An S3 lifecycle policy is a set of rules that automatically transitions objects between storage classes or deletes them after a specified time to optimize cost and manage data lifecycles.

Full entry →
Full S3 lifecycle policy glossary entry →

Term 392

Safe Attachments

Safe Attachments is a Microsoft Defender for Office 365 feature that opens email attachments in a virtual sandbox to detect and block malicious content before they reach your inbox.

Full entry →
Full Safe Attachments glossary entry →

Term 393

Safe Links

Safe Links is a Microsoft Defender for Office 365 feature that scans URLs in emails and documents in real time to protect users from malicious websites.

Full entry →
Full Safe Links glossary entry →

Term 394

Safeguard

A safeguard is a control, measure, or action designed to protect an organization's assets from threats, vulnerabilities, and risks.

Full entry →
Full Safeguard glossary entry →

Term 395

SAM

SAM stands for Source Account Mapping, a process in CI/CD and monitoring that links source code changes to specific user accounts for tracking and security.

Full entry →
Full SAM glossary entry →

Term 396

Sandbox analysis

Sandbox analysis is a security technique where suspicious files or code are executed in an isolated, controlled environment to observe their behavior without risking harm to the live network.

Full entry →
Full Sandbox analysis glossary entry →

Term 397

SAST

Static Application Security Testing is a white-box method of analyzing source code, bytecode, or compiled binaries for security vulnerabilities without executing the program.

Full entry →
Full SAST glossary entry →

Term 398

SBOM

An SBOM is a formal, machine-readable inventory of all software components and dependencies used in a software application or system.

Full entry →
Full SBOM glossary entry →

Term 399

SCA

SCA (Software Composition Analysis) is a security testing method that automatically identifies open-source components, libraries, and dependencies in software to find known vulnerabilities and license compliance issues.

Full entry →
Full SCA glossary entry →

Term 400

Secrets Manager

AWS Secrets Manager is a fully managed service that helps you protect access to your applications, services, and IT resources by securely storing, rotating, and controlling access to secrets like database passwords, API keys, and credentials.

Full entry →
Full Secrets Manager glossary entry →

Term 401

Secrets scanning

Secrets scanning is the automated process of detecting accidentally exposed sensitive information, such as passwords, API keys, and tokens, in code repositories and other digital environments.

Full entry →
Full Secrets scanning glossary entry →

Term 402

Secure Score

Secure Score is a measurement tool in Microsoft 365 that shows how secure your organization is based on the security features you have enabled and configured.

Full entry →
Full Secure Score glossary entry →

Term 403

Security

Security in IT is the practice of protecting systems, networks, and data from unauthorized access, damage, or theft.

Full entry →
Full Security glossary entry →

Term 404

Security assessment

A security assessment is a systematic evaluation of an organization’s systems, networks, and applications to identify vulnerabilities, threats, and risks, and to recommend improvements.

Full entry →
Full Security assessment glossary entry →

Term 405

Security awareness

Security awareness is the ongoing practice of educating people within an organization about cybersecurity risks, safe behaviors, and their individual responsibilities to protect information assets.

Full entry →
Full Security awareness glossary entry →

Term 406

Security baseline

A security baseline is a documented minimum set of security configurations and settings that must be applied to a system, device, or network to ensure a known secure starting point.

Full entry →
Full Security baseline glossary entry →

Term 407

Security Command Center

Security Command Center is a centralized cloud security management platform that helps organizations detect, investigate, and respond to threats across their cloud infrastructure.

Full entry →
Full Security Command Center glossary entry →

Term 408

Security control

A security control is a safeguard or countermeasure designed to protect the confidentiality, integrity, and availability of information systems and data.

Full entry →
Full Security control glossary entry →

Term 409

Security defaults

Security defaults is a set of basic security settings in Microsoft Entra ID that automatically enables common protections like multifactor authentication for all users in a tenant.

Full entry →
Full Security defaults glossary entry →

Term 410

Security governance

Security governance is the framework of rules, policies, and processes that an organization uses to align its cybersecurity activities with its business goals and legal obligations.

Full entry →
Full Security governance glossary entry →

Term 411

Security group

A security group is a virtual firewall that controls inbound and outbound traffic to AWS resources, such as EC2 instances, based on defined rules.

Full entry →
Full Security group glossary entry →

Term 412

Security Hub

Security Hub is a cloud security posture management service that aggregates and prioritizes security alerts and compliance checks from multiple AWS services into a single place.

Full entry →
Full Security Hub glossary entry →

Term 413

Security kernel

The security kernel is the core, trusted part of an operating system that enforces access control and security policies for all system operations.

Full entry →
Full Security kernel glossary entry →

Term 414

Security misconfiguration

Security misconfiguration occurs when security settings are defined, implemented, or maintained incorrectly, leaving systems, applications, or networks vulnerable to unauthorized access or data breaches.

Full entry →
Full Security misconfiguration glossary entry →

Term 415

Security model

A security model is a formal framework that defines how subjects (users, processes) can access objects (files, resources) based on rules, ensuring confidentiality, integrity, and availability.

Full entry →
Full Security model glossary entry →

Term 416

Security operations center

A Security Operations Center (SOC) is a centralized team and facility that monitors, detects, analyzes, and responds to cybersecurity incidents across an organization's IT environment 24/7.

Full entry →
Full Security operations center glossary entry →

Term 417

Security pillar

The Security pillar is a set of best practices for designing and operating cloud systems that protect data, systems, and assets through confidentiality, integrity, and availability controls.

Full entry →
Full Security pillar glossary entry →

Term 418

Security policy

A security policy is a formal set of rules and guidelines that an organization establishes to protect its information assets and technology resources.

Full entry →
Full Security policy glossary entry →

Term 419

Security posture

An organization's overall cybersecurity strength, including policies, controls, and readiness to defend against and respond to threats.

Full entry →
Full Security posture glossary entry →

Term 420

Security recommendation

A security recommendation is a prescribed action, configuration, or update that aims to reduce risk and protect systems, data, and users from known threats or vulnerabilities.

Full entry →
Full Security recommendation glossary entry →
← Part 13Part 15 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14currentPart 15Part 16Part 17Part 18

Study resources

All CS0-003 Acronyms→CS0-003 Practice Tests→CS0-003 Study Guide→Exam Domains→