Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

ISC2 Certified in Cybersecurity CC/Acronyms/Part 4

Acronym study

ISC2 CC Acronyms — Part 4 of 26

Terms 91–120 of 754 ISC2 CC acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 3Part 4 of 26Part 5 →

Term 91

Broken access control

Broken access control is a security vulnerability that occurs when an application does not properly enforce restrictions on what authenticated users are allowed to do, allowing them to access unauthorized data or perform unauthorized actions.

Full entry →
Full Broken access control glossary entry →

Term 92

Budgets

Budgets in cloud computing are monitoring tools that allow you to set spending limits and receive alerts when your costs approach or exceed those limits.

Full entry →
Full Budgets glossary entry →

Term 93

Business continuity

Business continuity is the capability of an organization to continue delivering essential services during and after a disruptive event.

Full entry →
Full Business continuity glossary entry →

Term 94

Business continuity plan

A Business continuity plan (BCP) is a documented strategy that outlines how an organization will continue critical operations during and after a disruptive event.

Full entry →
Full Business continuity plan glossary entry →

Term 95

Business Continuity Planning

Business Continuity Planning is the process of creating a strategy to keep an organization's essential functions running during and after a major disruption.

Full entry →
Full Business Continuity Planning glossary entry →

Term 96

Business impact analysis

A systematic process used to identify and evaluate the potential effects of an interruption to critical business operations as a result of a disaster, accident, or emergency.

Full entry →
Full Business impact analysis glossary entry →

Term 97

BYOD

BYOD (Bring Your Own Device) is a policy allowing employees to use their personal devices for work tasks, increasing flexibility but introducing security and management challenges.

Full entry →
Full BYOD glossary entry →

Term 98

Captive portal

A captive portal is a web page that you must see and interact with before you are allowed full access to a public or guest Wi-Fi network.

Full entry →
Full Captive portal glossary entry →

Term 99

CDP

CDP is a Cisco proprietary protocol used by network devices to share information about themselves with directly connected neighbors, helping network administrators discover and understand the topology.

Full entry →
Full CDP glossary entry →

Term 100

Certificate pinning

Certificate pinning is a security technique that associates a specific digital certificate or public key with a particular server, so that an app or system will only trust that exact certificate, rejecting any others even if they are issued by a trusted certificate authority.

Full entry →
Full Certificate pinning glossary entry →

Term 101

Chain of custody

Chain of custody is a documented process that tracks the handling, transfer, and possession of evidence or digital assets from the moment they are collected until they are presented in court or used in an investigation.

Full entry →
Full Chain of custody glossary entry →

Term 102

Change management

Change management is the structured process of planning, approving, implementing, and reviewing changes to IT systems to minimize risk and disruption.

Full entry →
Full Change management glossary entry →

Term 103

CIA triad

The CIA triad is a foundational security model that guides organizations in protecting data through confidentiality, integrity, and availability.

Full entry →
Full CIA triad glossary entry →

Term 104

Clark-Wilson

A security model that enforces data integrity by ensuring that only authorized, well-formed transactions change data, and that those changes are logged and controlled.

Full entry →
Full Clark-Wilson glossary entry →

Term 105

Cloud Armor

Cloud Armor is a Google Cloud web application firewall (WAF) service that protects applications and websites from attacks like DDoS and SQL injection using customizable security rules.

Full entry →
Full Cloud Armor glossary entry →

Term 106

Cloud Audit Logs

Cloud Audit Logs are a record of actions taken by users, services, and resources inside a cloud environment, capturing who did what, when, and from where.

Full entry →
Full Cloud Audit Logs glossary entry →

Term 107

Cloud DLP

Cloud DLP (Data Loss Prevention) is a set of tools and policies that protect sensitive data stored, processed, or shared in cloud services from unauthorized access, leaks, or breaches.

Full entry →
Full Cloud DLP glossary entry →

Term 108

Cloud IAM

Cloud IAM (Identity and Access Management) is a framework of policies and technologies that ensures the right individuals have appropriate access to cloud resources at the right time and for the right reasons.

Full entry →
Full Cloud IAM glossary entry →

Term 109

Cloud KMS

Cloud KMS (Key Management Service) is a cloud-based service that lets you create, manage, and use encryption keys to protect your data at rest and in transit.

Full entry →
Full Cloud KMS glossary entry →

Term 110

Cloud logging

Cloud logging is the practice of collecting, storing, and analyzing log data generated by cloud-based resources and applications to monitor performance, troubleshoot issues, and maintain security.

Full entry →
Full Cloud logging glossary entry →

Term 111

Cloud Monitoring

Cloud monitoring is the process of observing, measuring, and managing an organization's cloud infrastructure and applications to ensure performance, availability, and security.

Full entry →
Full Cloud Monitoring glossary entry →

Term 112

Cloud security architecture

Cloud security architecture is the design and organization of security controls, policies, and technologies used to protect data, applications, and infrastructure in a cloud computing environment.

Full entry →
Full Cloud security architecture glossary entry →

Term 113

Cloud security posture management

Cloud security posture management is the continuous process of monitoring cloud environments to detect misconfigurations, compliance violations, and security risks, and automatically remediating them to maintain a strong security posture.

Full entry →
Full Cloud security posture management glossary entry →

Term 114

CloudFront

Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency and high transfer speeds.

Full entry →
Full CloudFront glossary entry →

Term 115

CloudTrail

AWS CloudTrail is a service that records every action taken in your AWS account, creating a detailed log of who did what and when for security and auditing purposes.

Full entry →
Full CloudTrail glossary entry →

Term 116

CloudWatch

CloudWatch is an AWS monitoring service that tracks metrics, logs, and alarms for your cloud resources so you can see what’s happening and respond to issues.

Full entry →
Full CloudWatch glossary entry →

Term 117

Clustering

Clustering is a technique where multiple servers work together as a single system to keep applications running even if one server fails.

Full entry →
Full Clustering glossary entry →

Term 118

COBIT

Control Objectives for Information and Related Technologies — an IT governance framework for managing and auditing IT processes.

Full entry →
Full COBIT glossary entry →

Term 119

Code of ethics

A set of principles and rules that guide IT professionals to act with integrity, honesty, and responsibility in their work.

Full entry →
Full Code of ethics glossary entry →

Term 120

CodeQL

CodeQL is a semantic code analysis engine used by developers to find security vulnerabilities in source code by treating code as data and querying it for potential flaws.

Full entry →
Full CodeQL glossary entry →
← Part 3Part 5 →

Acronym parts

Part 1Part 2Part 3Part 4currentPart 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26

Study resources

All ISC2 CC Acronyms→ISC2 CC Practice Tests→ISC2 CC Study Guide→Exam Domains→