Term 31
AWS Audit Manager
AWS Audit Manager is a service that automatically collects evidence from your AWS accounts to help you prove that you are following security and compliance rules, making audits easier and faster.
Acronym study
Terms 31–60 of 352 MD-102 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 31
AWS Audit Manager is a service that automatically collects evidence from your AWS accounts to help you prove that you are following security and compliance rules, making audits easier and faster.
Term 32
AWS Config Rules are customizable, automated checks that continuously evaluate your AWS resource configurations against desired compliance or security policies and alert you when a resource is noncompliant.
Term 33
AWS Firewall Manager is a centralized security management service that lets you configure and enforce firewall rules across all accounts and resources in your AWS organization from a single place.
Term 34
AWS Organizations is a free service that lets you centrally manage multiple AWS accounts, apply security policies, and control billing across your entire cloud environment.
Term 35
AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards web applications running on AWS from attacks that try to overwhelm them with traffic.
Term 36
AWS SSO is a cloud-based service that lets you sign in once (single sign-on) to access multiple AWS accounts and business applications from one central place.
Term 37
AWS WAF is a cloud-based web application firewall that helps protect your web applications from common web exploits like SQL injection and cross-site scripting by allowing you to define customizable rules.
Term 38
Azure Firewall is a cloud-based network security service that protects your virtual networks in Microsoft Azure by filtering traffic based on rules you define.
Term 39
Azure Policy is a service in Microsoft Azure that lets you create, assign, and manage rules to ensure your resources stay compliant with your company standards and service-level agreements.
Term 40
A cloud-based virtual private network gateway in Microsoft Azure that securely connects on-premises networks to Azure virtual networks over encrypted tunnels.
Term 41
A backlight is a light source behind a liquid crystal display (LCD) that illuminates the screen so you can see the images and text.
Term 42
A backup policy is a documented set of rules that defines what data to back up, how often, where to store it, and how long to keep it, ensuring data can be restored after loss.
Term 43
Battery calibration is the process of resetting a laptop or mobile device's battery gauge so that it accurately reports the remaining charge.
Term 44
Biometric unlock is a security method that uses unique physical characteristics, like a fingerprint or face, to grant access to a device.
Term 45
BitLocker is a full-disk encryption feature built into Windows that protects data by encrypting the entire drive so that unauthorized users cannot access files without the correct recovery key.
Term 46
A BitLocker policy is a set of configuration rules that IT administrators use to manage how BitLocker Drive Encryption is enabled, enforced, and recovered on Windows devices within an organization.
Term 47
A Bluetooth module is a small hardware component that enables wireless communication between devices over short distances using Bluetooth technology.
Term 48
A branch policy is a set of rules and conditions enforced on a Git branch to control how code changes are proposed, reviewed, and merged, ensuring code quality and protecting critical branches.
Term 49
Broken access control is a security vulnerability that occurs when an application does not properly enforce restrictions on what authenticated users are allowed to do, allowing them to access unauthorized data or perform unauthorized actions.
Term 50
A cellular network is a wireless communication system that divides a geographic area into smaller zones called cells, each served by a fixed-location transceiver, to enable mobile devices like smartphones to communicate with each other and with the internet.
Term 51
A trusted entity that issues digital certificates to verify the identity of websites, devices, and users in secure online communications.
Term 52
Certificate pinning is a security technique that associates a specific digital certificate or public key with a particular server, so that an app or system will only trust that exact certificate, rejecting any others even if they are issued by a trusted certificate authority.
Term 53
A Certificate Signing Request (CSR) is a specially formatted message sent by an applicant to a Certificate Authority (CA) to request a digital certificate that binds their public key to their identity.
Term 54
A certificate warning is a security alert a web browser or application displays when it cannot fully trust the digital certificate presented by a website or service.
Term 55
Cloud Audit Logs are a record of actions taken by users, services, and resources inside a cloud environment, capturing who did what, when, and from where.
Term 56
Cloud IAM (Identity and Access Management) is a framework of policies and technologies that ensures the right individuals have appropriate access to cloud resources at the right time and for the right reasons.
Term 57
A Cloud management gateway is a network appliance or software service that securely connects devices on a local network to a cloud-based management platform, enabling remote monitoring, configuration, and updates.
Term 58
Cloud security architecture is the design and organization of security controls, policies, and technologies used to protect data, applications, and infrastructure in a cloud computing environment.
Term 59
Cloud security posture management is the continuous process of monitoring cloud environments to detect misconfigurations, compliance violations, and security risks, and automatically remediating them to maintain a strong security posture.
Term 60
A Cloud VPN is a service that securely connects your private network to a cloud provider's network over the public internet using encryption and authentication.