Term 421
Security strategy
A security strategy is a high-level plan that outlines how an organization protects its information assets, aligns security with business goals, and manages risk over time.
Acronym study
Terms 421–450 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 421
A security strategy is a high-level plan that outlines how an organization protects its information assets, aligns security with business goals, and manages risk over time.
Term 422
A security update is a software patch released to fix a vulnerability that could be exploited by attackers to compromise a system.
Term 423
A sensitivity label is a metadata tag applied to digital content that classifies the content's level of confidentiality and governs how it can be shared, protected, and accessed.
Term 424
Serverless security is the practice of protecting applications that run on serverless computing platforms, where the cloud provider manages the infrastructure and the customer is responsible for securing the code, data, and access controls.
Term 425
A Service Control Policy (SCP) is a centralized governance tool in AWS Organizations that allows you to define and enforce maximum permissions for all accounts in an organization, acting as a security guardrail that limits what actions principals can perform.
Term 426
Service Health is a monitoring feature in Microsoft 365 and Azure that provides real-time and historical status of cloud services, including outages, advisories, and incidents.
Term 427
The Service Trust Portal is a Microsoft website that gives IT professionals and auditors access to compliance documentation, audit reports, and security information about Microsoft cloud services.
Term 428
Shared access is a permission model where multiple users, systems, or services are granted common access rights to a resource such as a file, database, network drive, or cloud storage.
Term 429
A shared access signature (SAS) is a secure, time-limited URL that grants granular access to specific resources in cloud storage, allowing you to delegate permissions without sharing your account keys.
Term 430
Shift left security is the practice of integrating security testing and controls earlier in the software development lifecycle, rather than waiting until after deployment.
Term 431
A social engineering attack where an attacker observes a victim's screen or keyboard to steal passwords or sensitive information.
Term 432
SIEM (Security Information and Event Management) is a system that collects and analyzes log data from across an IT environment to detect and respond to security threats in real time.
Term 433
A SIEM query is a search command used in a Security Information and Event Management system to find, filter, and analyze security-related log data from across an organization's IT environment.
Term 434
A Sigma rule is a generic, YAML-based detection rule format used in cybersecurity to describe suspicious activities in a way that can be easily shared and converted for use across different security information and event management (SIEM) systems.
Term 435
A forged Kerberos service ticket that grants access to a specific service in a Windows domain without requiring the user's password.
Term 436
Site Recovery is the process of restoring IT infrastructure and data at a different physical location after a disaster to keep business operations running.
Term 437
A Service Level Agreement (SLA) is a contract between a service provider and a customer that defines the level of service expected, including metrics like uptime, response time, and penalties for non-compliance.
Term 438
SLE (Single Loss Expectancy) is the monetary loss expected each time a specific risk event occurs, calculated as asset value times exposure factor.
Term 439
An SLI (Service Level Indicator) is a carefully chosen metric that measures one specific aspect of a service's performance, such as request latency or error rate, to help determine whether the service is meeting its reliability goals.
Term 440
A Service Level Objective is a measurable target for a specific aspect of a service's performance or reliability that a team commits to meeting over a defined period.
Term 441
Smishing is a social engineering attack that uses deceptive text messages to trick recipients into revealing sensitive information or installing malware.
Term 442
A SOAR playbook is a documented, step-by-step guide that automates and orchestrates security incident response actions within a Security Orchestration, Automation, and Response platform.
Term 443
A Security Operations Center (SOC) is a centralized team that monitors, detects, analyzes, and responds to cybersecurity incidents to protect an organization's information systems.
Term 444
A soft delete marks data as deleted without actually removing it from the database, allowing recovery if needed.
Term 445
Spear phishing is a targeted cyberattack in which a criminal sends a fraudulent email that appears to come from a trusted source, aiming to trick a specific person or organization into revealing sensitive data or installing malware.
Term 446
Spyware is malicious software that secretly monitors and collects information about a user's activity without their knowledge or consent.
Term 447
SQL injection is a web security vulnerability that allows an attacker to interfere with the queries an application makes to its database, often to read, modify, or destroy data.
Term 448
An SSL VPN is a virtual private network that uses the Secure Sockets Layer protocol to create an encrypted tunnel for remote users to securely access network resources over the internet.
Term 449
Single Sign-On (SSO) is an authentication process that allows a user to access multiple applications or systems with one set of login credentials.
Term 450
A security vulnerability where an attacker tricks a server into making unauthorized requests to internal or external resources on behalf of the attacker.