Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

ISC2 Certified in Cybersecurity CC/Acronyms/Part 20

Acronym study

ISC2 CC Acronyms — Part 20 of 26

Terms 571–600 of 754 ISC2 CC acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 19Part 20 of 26Part 21 →

Term 571

SBOM

An SBOM is a formal, machine-readable inventory of all software components and dependencies used in a software application or system.

Full entry →
Full SBOM glossary entry →

Term 572

SCA

SCA (Software Composition Analysis) is a security testing method that automatically identifies open-source components, libraries, and dependencies in software to find known vulnerabilities and license compliance issues.

Full entry →
Full SCA glossary entry →

Term 573

SCADA

SCADA is an industrial control system that monitors and controls infrastructure processes like power grids, water treatment, and pipelines.

Full entry →
Full SCADA glossary entry →

Term 574

Scope

In IT, scope defines the boundaries, goals, and deliverables of a project, assessment, or engagement, specifying what is included and what is excluded.

Full entry →
Full Scope glossary entry →

Term 575

SCP

SCP (Secure Copy Protocol) is a network protocol used to securely transfer files between computers over an encrypted SSH connection.

Full entry →
Full SCP glossary entry →

Term 576

Secret Manager

A Secret Manager is a centralized tool that securely stores, manages, and controls access to sensitive information like passwords, API keys, and certificates, often automating their rotation and injection into applications.

Full entry →
Full Secret Manager glossary entry →

Term 577

Secrets management

Secrets management is the practice of securely storing, controlling access to, and regularly rotating sensitive credentials like passwords, API keys, and certificates used by applications and services.

Full entry →
Full Secrets management glossary entry →

Term 578

Secrets Manager

AWS Secrets Manager is a fully managed service that helps you protect access to your applications, services, and IT resources by securely storing, rotating, and controlling access to secrets like database passwords, API keys, and credentials.

Full entry →
Full Secrets Manager glossary entry →

Term 579

Secure Access Service Edge

Secure Access Service Edge (SASE) is a cloud-based security framework that combines network connectivity and security services into a single, unified service to protect users and devices wherever they are.

Full entry →
Full Secure Access Service Edge glossary entry →

Term 580

Secure boot

Secure Boot is a security feature that ensures a device starts up using only trusted software that is digitally signed by the manufacturer.

Full entry →
Full Secure boot glossary entry →

Term 581

Secure enclave

A secure enclave is a dedicated, isolated hardware component within a processor that protects sensitive data and code from unauthorized access, even if the main operating system is compromised.

Full entry →
Full Secure enclave glossary entry →

Term 582

Secure Score

Secure Score is a measurement tool in Microsoft 365 that shows how secure your organization is based on the security features you have enabled and configured.

Full entry →
Full Secure Score glossary entry →

Term 583

Secure Shell

Secure Shell (SSH) is a network protocol that provides a secure, encrypted way to access and manage remote computers over an unsecured network.

Full entry →
Full Secure Shell glossary entry →

Term 584

Secure Sockets Layer

Secure Sockets Layer is a cryptographic protocol that encrypts data transmitted between a web browser and a server to protect it from eavesdropping and tampering.

Full entry →
Full Secure Sockets Layer glossary entry →

Term 585

Security Assertion Markup Language

Security Assertion Markup Language is an open standard that allows different computer systems to securely share authentication and authorization information about a user.

Full entry →
Full Security Assertion Markup Language glossary entry →

Term 586

Security awareness

Security awareness is the ongoing practice of educating people within an organization about cybersecurity risks, safe behaviors, and their individual responsibilities to protect information assets.

Full entry →
Full Security awareness glossary entry →

Term 587

Security baseline

A security baseline is a documented minimum set of security configurations and settings that must be applied to a system, device, or network to ensure a known secure starting point.

Full entry →
Full Security baseline glossary entry →

Term 588

Security Command Center

Security Command Center is a centralized cloud security management platform that helps organizations detect, investigate, and respond to threats across their cloud infrastructure.

Full entry →
Full Security Command Center glossary entry →

Term 589

Security control

A security control is a safeguard or countermeasure designed to protect the confidentiality, integrity, and availability of information systems and data.

Full entry →
Full Security control glossary entry →

Term 590

Security governance

Security governance is the framework of rules, policies, and processes that an organization uses to align its cybersecurity activities with its business goals and legal obligations.

Full entry →
Full Security governance glossary entry →

Term 591

Security group

A security group is a virtual firewall that controls inbound and outbound traffic to AWS resources, such as EC2 instances, based on defined rules.

Full entry →
Full Security group glossary entry →

Term 592

Security Hub

Security Hub is a cloud security posture management service that aggregates and prioritizes security alerts and compliance checks from multiple AWS services into a single place.

Full entry →
Full Security Hub glossary entry →

Term 593

Security Information and Event Management

A system that collects, analyzes, and reports on security data from across an IT environment to detect and respond to threats.

Full entry →
Full Security Information and Event Management glossary entry →

Term 594

Security kernel

The security kernel is the core, trusted part of an operating system that enforces access control and security policies for all system operations.

Full entry →
Full Security kernel glossary entry →

Term 595

Security misconfiguration

Security misconfiguration occurs when security settings are defined, implemented, or maintained incorrectly, leaving systems, applications, or networks vulnerable to unauthorized access or data breaches.

Full entry →
Full Security misconfiguration glossary entry →

Term 596

Security model

A security model is a formal framework that defines how subjects (users, processes) can access objects (files, resources) based on rules, ensuring confidentiality, integrity, and availability.

Full entry →
Full Security model glossary entry →

Term 597

Security operations center

A Security Operations Center (SOC) is a centralized team and facility that monitors, detects, analyzes, and responds to cybersecurity incidents across an organization's IT environment 24/7.

Full entry →
Full Security operations center glossary entry →

Term 598

Security policy

A security policy is a formal set of rules and guidelines that an organization establishes to protect its information assets and technology resources.

Full entry →
Full Security policy glossary entry →

Term 599

Security posture

An organization's overall cybersecurity strength, including policies, controls, and readiness to defend against and respond to threats.

Full entry →
Full Security posture glossary entry →

Term 600

Security recommendation

A security recommendation is a prescribed action, configuration, or update that aims to reduce risk and protect systems, data, and users from known threats or vulnerabilities.

Full entry →
Full Security recommendation glossary entry →
← Part 19Part 21 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20currentPart 21Part 22Part 23Part 24Part 25Part 26

Study resources

All ISC2 CC Acronyms→ISC2 CC Practice Tests→ISC2 CC Study Guide→Exam Domains→