Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Certified Information Systems Security Professional CISSP/Acronyms/Part 3

Acronym study

CISSP Acronyms — Part 3 of 10

Terms 61–90 of 295 CISSP acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 2Part 3 of 10Part 4 →

Term 61

Compliance state

Compliance state is the current status of a system, application, or device indicating whether it meets a defined set of security policies, regulatory requirements, or configuration standards.

Full entry →
Full Compliance state glossary entry →

Term 62

Conditional access

Conditional access is a security framework that evaluates signals like user location, device health, and risk level to grant or block access to resources in real time.

Full entry →
Full Conditional access glossary entry →

Term 63

Conditional Access integration

Conditional Access integration is a security framework that evaluates signals such as user identity, location, device state, and application sensitivity to grant or block access to resources before a session is established.

Full entry →
Full Conditional Access integration glossary entry →

Term 64

Conditional Access policy

A Conditional Access policy is a set of rules in Microsoft Entra ID that automatically grants or blocks access to cloud apps based on signals like user identity, location, device health, and risk level.

Full entry →
Full Conditional Access policy glossary entry →

Term 65

Container security

Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.

Full entry →
Full Container security glossary entry →

Term 66

Corrective control

A security measure that acts after an incident to limit damage, restore operations, and prevent recurrence.

Full entry →
Full Corrective control glossary entry →

Term 67

Countermeasure

A countermeasure is any action, device, procedure, or technique that reduces a threat, vulnerability, or risk to an acceptable level.

Full entry →
Full Countermeasure glossary entry →

Term 68

Covert channel

A covert channel is a hidden communication path that allows data to be transferred in ways that violate a system's security policy, often by using resources not intended for communication.

Full entry →
Full Covert channel glossary entry →

Term 69

DAC

Discretionary Access Control is a security model where the owner of a resource decides who can access it and what permissions they have.

Full entry →
Full DAC glossary entry →

Term 70

Data classification

Data classification is the process of organizing data into categories based on its sensitivity, value, and criticality to an organization, so that appropriate security controls can be applied.

Full entry →
Full Data classification glossary entry →

Term 71

Data controller

An entity that determines the purposes and means of processing personal data.

Full entry →
Full Data controller glossary entry →

Term 72

Data custodian

A data custodian is the person or team responsible for the safe handling, storage, and transport of data on behalf of the data owner.

Full entry →
Full Data custodian glossary entry →

Term 73

Data masking

Data masking is a security technique that replaces sensitive data with realistic but fictional data so it can be used safely in non-production environments.

Full entry →
Full Data masking glossary entry →

Term 74

Data owner

A senior-level person who is accountable for the classification, protection, and appropriate use of a specific set of data within an organization.

Full entry →
Full Data owner glossary entry →

Term 75

Data processor

A data processor is a person or organization that processes personal data on behalf of a data controller, following the controller's instructions and under their authority.

Full entry →
Full Data processor glossary entry →

Term 76

Data protection

Data protection refers to the practices and technologies used to safeguard personal and sensitive information from unauthorized access, loss, or corruption.

Full entry →
Full Data protection glossary entry →

Term 77

Data remanence

Data remanence is the residual representation of data that remains on a storage medium even after attempts to erase or remove it.

Full entry →
Full Data remanence glossary entry →

Term 78

Data retention

Data retention is the practice of keeping data for a specific period to meet legal, business, or compliance needs, and then securely disposing of it.

Full entry →
Full Data retention glossary entry →

Term 79

Data sanitization

Data sanitization is the process of deliberately, permanently, and irreversibly removing or destroying data stored on a device or media so that it cannot be recovered or reconstructed by any known method.

Full entry →
Full Data sanitization glossary entry →

Term 80

Data security

Data security is the practice of protecting digital information from unauthorized access, corruption, or theft throughout its lifecycle.

Full entry →
Full Data security glossary entry →

Term 81

Dedicated security mode

A configuration in IT systems where security services or appliances operate in an isolated, single-purpose environment to prevent interference with other functions and reduce attack surface.

Full entry →
Full Dedicated security mode glossary entry →

Term 82

Defender policy

A Defender policy is a set of security rules configured in Microsoft 365 Defender that controls how endpoint detection and response (EDR), antivirus, firewall, and other protection features behave on managed devices.

Full entry →
Full Defender policy glossary entry →

Term 83

Detective control

A detective control is a security measure that identifies and reports unwanted or suspicious activity after it has already occurred.

Full entry →
Full Detective control glossary entry →

Term 84

Deterrent control

A deterrent control is a security measure designed to discourage potential attackers from attempting to breach a system or commit a violation, relying on the perceived threat of consequences.

Full entry →
Full Deterrent control glossary entry →

Term 85

Device compliance

Device compliance is the process of ensuring that a device meets an organization's security and configuration policies before it can access network resources.

Full entry →
Full Device compliance glossary entry →

Term 86

Device risk

Device risk is the chance that a computer, phone, or other endpoint could cause a security problem or data leak because it is not properly managed or protected.

Full entry →
Full Device risk glossary entry →

Term 87

DevSecOps

DevSecOps is a software development practice that integrates security into every phase of the DevOps lifecycle, making security a shared responsibility from the start.

Full entry →
Full DevSecOps glossary entry →

Term 88

Digital certificate

A digital certificate is an electronic document that verifies the identity of a person, device, or website and enables secure encrypted communication over the internet.

Full entry →
Full Digital certificate glossary entry →

Term 89

Disk encryption

Disk encryption is the process of converting data on a storage device into a coded form that can only be read with the correct decryption key, protecting it from unauthorized access.

Full entry →
Full Disk encryption glossary entry →

Term 90

DLP policy

A DLP policy is a set of rules that an organization uses to prevent sensitive data from being lost, stolen, or accidentally exposed, whether it is in use, in motion, or at rest.

Full entry →
Full DLP policy glossary entry →
← Part 2Part 4 →

Acronym parts

Part 1Part 2Part 3currentPart 4Part 5Part 6Part 7Part 8Part 9Part 10

Study resources

All CISSP Acronyms→CISSP Practice Tests→CISSP Study Guide→Exam Domains→