Term 61
Backup policy
A backup policy is a documented set of rules that defines what data to back up, how often, where to store it, and how long to keep it, ensuring data can be restored after loss.
Acronym study
Terms 61–90 of 514 CS0-003 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 61
A backup policy is a documented set of rules that defines what data to back up, how often, where to store it, and how long to keep it, ensuring data can be restored after loss.
Term 62
Banner grabbing is the process of connecting to a remote service to capture the banner it sends, which often reveals software type and version for reconnaissance.
Term 63
A Bash script is a text file containing a sequence of commands for the Unix shell Bash, allowing users to automate repetitive tasks and streamline system administration on Linux and macOS.
Term 64
A bind shell is a type of shell connection where the target machine opens a listening port and waits for an attacker to connect, granting remote command access.
Term 65
A BitLocker policy is a set of configuration rules that IT administrators use to manage how BitLocker Drive Encryption is enabled, enforced, and recovered on Windows devices within an organization.
Term 66
A blameless postmortem is a structured review process after an incident where the focus is on understanding what happened and how to improve, without assigning blame to any individual.
Term 67
BloodHound is a graph-based tool that maps relationships within an Active Directory environment to identify attack paths that could lead to privilege escalation.
Term 68
The Blue team is the group of cybersecurity professionals responsible for defending an organization's systems, networks, and data against attacks and maintaining the security posture.
Term 69
Blue-green deployment is a release strategy that reduces downtime and risk by running two identical production environments, one live and one idle, enabling instant traffic switching between them.
Term 70
A botnet is a network of computers or devices infected with malware and controlled remotely by an attacker to carry out coordinated malicious activities without the owners' knowledge.
Term 71
A branch policy is a set of rules and conditions enforced on a Git branch to control how code changes are proposed, reviewed, and merged, ensuring code quality and protecting critical branches.
Term 72
Broken access control is a security vulnerability that occurs when an application does not properly enforce restrictions on what authenticated users are allowed to do, allowing them to access unauthorized data or perform unauthorized actions.
Term 73
A brute force attack is a trial-and-error method used to obtain information such as a user password or personal identification number (PIN).
Term 74
Budgets in cloud computing are monitoring tools that allow you to set spending limits and receive alerts when your costs approach or exceed those limits.
Term 75
A Business continuity plan (BCP) is a documented strategy that outlines how an organization will continue critical operations during and after a disruptive event.
Term 76
Business email compromise is a sophisticated cyberattack where a criminal impersonates a trusted person or organization via email to trick the victim into transferring money or revealing sensitive information.
Term 77
A systematic process used to identify and evaluate the potential effects of an interruption to critical business operations as a result of a disaster, accident, or emergency.
Term 78
A canary deployment is a software release strategy where a new version of an application is gradually rolled out to a small subset of users before being made available to everyone.
Term 79
The AWS Cloud Development Kit (CDK) is an infrastructure-as-code tool that lets you define cloud resources using familiar programming languages instead of writing YAML or JSON templates.
Term 80
A trusted entity that issues digital certificates to verify the identity of websites, devices, and users in secure online communications.
Term 81
Certificate pinning is a security technique that associates a specific digital certificate or public key with a particular server, so that an app or system will only trust that exact certificate, rejecting any others even if they are issued by a trusted certificate authority.
Term 82
A Certificate Signing Request (CSR) is a specially formatted message sent by an applicant to a Certificate Authority (CA) to request a digital certificate that binds their public key to their identity.
Term 83
A certificate warning is a security alert a web browser or application displays when it cannot fully trust the digital certificate presented by a website or service.
Term 84
Chaos engineering is the practice of intentionally injecting failures into a system to test its resilience and find weaknesses before they cause real outages.
Term 85
Cloud Audit Logs are a record of actions taken by users, services, and resources inside a cloud environment, capturing who did what, when, and from where.
Term 86
Cloud IAM (Identity and Access Management) is a framework of policies and technologies that ensures the right individuals have appropriate access to cloud resources at the right time and for the right reasons.
Term 87
Cloud logging is the practice of collecting, storing, and analyzing log data generated by cloud-based resources and applications to monitor performance, troubleshoot issues, and maintain security.
Term 88
A cloud profiler is a tool that continuously monitors and analyzes the performance characteristics of applications running in the cloud, helping identify which parts of the code consume the most resources like CPU, memory, or time.
Term 89
Cloud security architecture is the design and organization of security controls, policies, and technologies used to protect data, applications, and infrastructure in a cloud computing environment.
Term 90
Cloud security posture management is the continuous process of monitoring cloud environments to detect misconfigurations, compliance violations, and security risks, and automatically remediating them to maintain a strong security posture.