Term 31
Asset
In IT and cybersecurity, an asset is anything valuable that an organization owns or controls, including data, hardware, software, people, and intellectual property.
Acronym study
Terms 31–60 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 31
In IT and cybersecurity, an asset is anything valuable that an organization owns or controls, including data, hardware, software, people, and intellectual property.
Term 32
An asset inventory is a comprehensive, up-to-date list of all hardware and software assets within an organization, used to identify vulnerabilities and manage security risks.
Term 33
Asset valuation is the process of determining the financial worth of an organization's information assets, often used to prioritize security controls and allocate protection resources effectively.
Term 34
Asymmetric encryption is a cryptographic method that uses a pair of keys—a public key for encryption and a private key for decryption—to securely exchange data without sharing a secret.
Term 35
Attack simulation training is a Microsoft 365 security tool that lets IT administrators run realistic phishing and password-attack campaigns against their own users to identify vulnerabilities and improve security awareness.
Term 36
The attack surface is the total sum of all points in a system, network, or application where an unauthorized user can try to enter or extract data.
Term 37
Attack surface management is the continuous process of identifying, monitoring, and reducing all the possible entry points an attacker could use to break into an organization's IT systems.
Term 38
An attack vector is the specific path or method a cyber attacker uses to gain unauthorized access to a computer system or network.
Term 39
An audit is a systematic, independent review of IT systems, processes, and controls to verify compliance with policies, standards, and regulations.
Term 40
An audit log is a chronological record of security-relevant events and user activities within a system, used for monitoring, compliance, and forensic analysis.
Term 41
An audit trail is a chronological record of events, changes, or activities in a system that provides evidence of who did what, when, and from where.
Term 42
An authenticated scan is a vulnerability scan that uses valid credentials to log into a system and examine it from the inside, providing a more thorough assessment of security weaknesses than an unauthenticated scan.
Term 43
An authentication log is a record of all attempts to verify a user's identity when accessing a system, including successes, failures, and associated metadata.
Term 44
AWS Audit Manager is a service that automatically collects evidence from your AWS accounts to help you prove that you are following security and compliance rules, making audits easier and faster.
Term 45
AWS Budgets is a cost management tool that lets you set spending limits and receive alerts when your AWS usage and costs approach or exceed those limits.
Term 46
AWS CloudTrail is a service that records every action taken in your AWS account, like a security camera that logs who did what and when.
Term 47
AWS Config is a service that continuously records, evaluates, and reports on changes to your AWS resources so you can maintain a secure and compliant infrastructure.
Term 48
AWS Config Rules are customizable, automated checks that continuously evaluate your AWS resource configurations against desired compliance or security policies and alert you when a resource is noncompliant.
Term 49
AWS Firewall Manager is a centralized security management service that lets you configure and enforce firewall rules across all accounts and resources in your AWS organization from a single place.
Term 50
AWS Health is a service that provides ongoing visibility into the status of your AWS resources, services, and accounts, delivering alerts and remediation guidance when issues occur.
Term 51
AWS Organizations is a free service that lets you centrally manage multiple AWS accounts, apply security policies, and control billing across your entire cloud environment.
Term 52
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS from attacks that try to overwhelm them with traffic.
Term 53
AWS SSO is a cloud-based service that lets you sign in once (single sign-on) to access multiple AWS accounts and business applications from one central place.
Term 54
AWS Systems Manager is a management service that helps you view and control your AWS infrastructure, automate operational tasks, and maintain security and compliance across your cloud and on-premises resources.
Term 55
AWS WAF is a cloud-based web application firewall that helps protect your web applications from common web exploits like SQL injection and cross-site scripting by allowing you to define customizable rules.
Term 56
AWS X-Ray is a service that traces and analyzes requests as they travel through your distributed application, helping you identify performance bottlenecks and debug errors.
Term 57
Azure Backup is a cloud-based service from Microsoft that protects your data by creating and storing backups of files, folders, virtual machines, databases, and entire servers in the Azure cloud.
Term 58
Azure Firewall is a cloud-based network security service that protects your virtual networks in Microsoft Azure by filtering traffic based on rules you define.
Term 59
Azure Policy is a service in Microsoft Azure that lets you create, assign, and manage rules to ensure your resources stay compliant with your company standards and service-level agreements.
Term 60
Azure Sentinel is Microsoft's cloud-native Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) service that uses intelligent analytics to help protect an enterprise's entire digital estate.