Term 271
Endpoint security policy
An endpoint security policy is a set of rules that controls how devices like laptops, phones, and servers connect to a network and what security protections they must have to keep data safe.
Acronym study
Terms 271–300 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 271
An endpoint security policy is a set of rules that controls how devices like laptops, phones, and servers connect to a network and what security protections they must have to keep data safe.
Term 272
Endpoint telemetry is the automated collection and transmission of security-relevant data from devices like laptops, servers, and phones to a central monitoring system for threat detection and analysis.
Term 273
Enterprise Mobility and Security is a Microsoft 365 suite of cloud services that secures and manages mobile devices, apps, and data within an organization.
Term 274
Enterprise risk management is the systematic process of identifying, assessing, and responding to risks that could affect an organization’s ability to achieve its objectives.
Term 275
Entitlement management is the process of controlling who has access to what resources in an organization through automated policies, approvals, and lifecycle management.
Term 276
End of Life (EOL) is the date when a vendor stops selling, supporting, or patching a product, requiring migration to avoid security and compliance risks.
Term 277
EOS (End of Support) marks the date when a vendor stops providing technical assistance, patches, and firmware updates for a product.
Term 278
Eradication is the phase in incident response where the root cause of a security breach is completely removed from the system to prevent the attack from happening again.
Term 279
ESP (Encapsulating Security Payload) is a core protocol in IPsec that provides confidentiality, data integrity, and authentication for VPN traffic by encrypting and optionally authenticating the payload of IP packets.
Term 280
ESP (Encapsulating Security Payload) provides confidentiality, data origin authentication, connectionless integrity, and anti-replay protection for IP packets.
Term 281
A rating from the Common Criteria that measures how thoroughly a computer product or system has been tested and verified for security.
Term 282
An event is any identifiable occurrence or action in a computer system, network, or application that can be logged, monitored, or analyzed for security or operational purposes.
Term 283
An event log is a file or record that stores a chronological list of events, changes, errors, or security incidents occurring on a computer system or network.
Term 284
An evil twin attack is a rogue wireless access point that impersonates a legitimate network to intercept or manipulate user traffic.
Term 285
Exchange Online is Microsoft's cloud-based email, calendar, and contact hosting service that is part of the Microsoft 365 suite, allowing organizations to manage corporate messaging without maintaining their own mail servers.
Term 286
An Exchange role is a specific set of server functions within Microsoft Exchange Server that handles a portion of the email messaging system, such as mailbox management, client access, or message transport.
Term 287
Exposure is the measure of potential loss or harm to an organization's assets when a vulnerability is exploited by a threat, often expressed as the window of time or degree of access an attacker has.
Term 288
Exposure factor is the percentage of an asset's value that would be lost if a specific threat event occurs, used to calculate the single loss expectancy in risk analysis.
Term 289
An extended access control list (ACL) is a set of rules that filters network traffic based on source and destination IP addresses, protocol type, and port numbers, providing more granular control than a standard ACL.
Term 290
Extended Detection and Response (XDR) is a security approach that collects and analyzes data from multiple sources like endpoints, networks, servers, and email to detect and stop threats more effectively.
Term 291
Extensible Authentication Protocol (EAP) is a flexible authentication framework used in network access control, particularly in wireless and point-to-point connections, that supports multiple authentication methods without requiring changes to the underlying protocol.
Term 292
EAP over LAN (EAPoL) is a protocol that carries authentication messages between a device and a network access point before the device is allowed to connect to the network.
Term 293
External identity refers to a digital identity that originates from a source outside your organization, such as a social media account or another company's directory, and is used to grant access to your applications or resources.
Term 294
Facial recognition technology is a biometric security method that identifies or verifies a person by analyzing and comparing patterns of their facial features.
Term 295
Fail2ban is a security tool that monitors log files for repeated authentication failures and temporarily bans the offending IP addresses using firewall rules.
Term 296
Failover is the automatic switching to a backup system when the primary system fails, ensuring continuous operation and minimal downtime.
Term 297
Failover routing is a network design that automatically redirects traffic to a backup path when the primary path fails, keeping services available.
Term 298
A false negative is when a security tool fails to detect a real threat, mistakenly treating it as harmless.
Term 299
A false positive is an alert or result that indicates a security threat or vulnerability exists when in fact there is no real issue.
Term 300
A feature update policy is a set of rules that controls how and when new features and capabilities are deployed to software, ensuring consistency, security, and minimal disruption across an organization.