Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 12

Acronym study

SC-900 Acronyms — Part 12 of 29

Terms 331–360 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 11Part 12 of 29Part 13 →

Term 331

HIPAA

HIPAA is a U.S. law that sets national standards for protecting sensitive patient health information from being disclosed without the patient's consent or knowledge.

Full entry →
Full HIPAA glossary entry →

Term 332

Host firewall

A host firewall is a software-based security tool that runs directly on an individual device, such as a laptop, server, or desktop, to monitor and control incoming and outgoing network traffic based on a set of security rules.

Full entry →
Full Host firewall glossary entry →

Term 333

Hosted zone

A hosted zone is a container for DNS records that holds the information needed to route internet traffic for a domain name.

Full entry →
Full Hosted zone glossary entry →

Term 334

Hunting query

A hunting query is a proactive, iterative Kusto Query Language (KQL) query used in Microsoft 365 Defender and Azure Sentinel to search for hidden threats, anomalies, and indicators of compromise across security data.

Full entry →
Full Hunting query glossary entry →

Term 335

Hybrid identity

Hybrid identity is an approach that synchronizes and manages user identities across both on-premises directories and cloud-based services, allowing seamless access to resources in both environments.

Full entry →
Full Hybrid identity glossary entry →

Term 336

Hypertext Transfer Protocol Secure

Hypertext Transfer Protocol Secure, or HTTPS, is the secure version of HTTP that encrypts data between a web browser and a website using SSL/TLS to protect sensitive information like passwords and credit card numbers.

Full entry →
Full Hypertext Transfer Protocol Secure glossary entry →

Term 337

Hypothesis-driven hunting

Hypothesis-driven hunting is a proactive security approach where analysts form educated guesses about potential threats and then actively search for evidence to confirm or refute those guesses.

Full entry →
Full Hypothesis-driven hunting glossary entry →

Term 338

IAM

Identity and Access Management (IAM) is a framework of policies and technologies that ensures the right individuals have the appropriate access to technology resources.

Full entry →
Full IAM glossary entry →

Term 339

IAM group

An IAM group is a collection of IAM users in a cloud or identity system that simplifies permission management by allowing you to assign policies to multiple users at once.

Full entry →
Full IAM group glossary entry →

Term 340

IAM misconfiguration

An IAM misconfiguration occurs when identity and access management settings are incorrectly set, granting too many or too few permissions to users or services, which can lead to security breaches or operational failures.

Full entry →
Full IAM misconfiguration glossary entry →

Term 341

IAM policy

An IAM policy is a set of rules that determines who can access specific cloud resources and what actions they are allowed to perform.

Full entry →
Full IAM policy glossary entry →

Term 342

IAM role

An IAM role is a set of permissions that an entity can assume temporarily to access cloud resources securely.

Full entry →
Full IAM role glossary entry →

Term 343

IAM user

An IAM user is an identity created in AWS Identity and Access Management that represents a person or service interacting with AWS resources, with its own credentials and permissions.

Full entry →
Full IAM user glossary entry →

Term 344

ICMP

ICMP is a network-layer protocol used by network devices to send error messages and operational information about network connectivity.

Full entry →
Full ICMP glossary entry →

Term 345

ICS

An ICS is a system of networked devices used to monitor and control industrial processes, such as manufacturing or power generation.

Full entry →
Full ICS glossary entry →

Term 346

Idempotency

Idempotency means that an operation can be performed multiple times without changing the result beyond the first application.

Full entry →
Full Idempotency glossary entry →

Term 347

Identification

Identification is the process where a user or device claims an identity, often by providing a username, ID number, or account name, before proving that claim with authentication.

Full entry →
Full Identification glossary entry →

Term 348

Identity

Identity is the unique set of attributes that defines a user, device, or service in a computer system, determining what they can access and do.

Full entry →
Full Identity glossary entry →

Term 349

Identity and access management

Identity and access management (IAM) is the security discipline that ensures the right individuals access the right resources at the right times for the right reasons.

Full entry →
Full Identity and access management glossary entry →

Term 350

Identity as security perimeter

A security model where trust is determined by user identity and context rather than the network location, treating identity itself as the primary boundary for access control.

Full entry →
Full Identity as security perimeter glossary entry →

Term 351

Identity Governance

Identity Governance is the policy-based framework that ensures the right people have the right access to the right resources at the right time, with oversight and control.

Full entry →
Full Identity Governance glossary entry →

Term 352

Identity protection

Identity protection is the set of policies, technologies, and practices used to secure digital identities and prevent unauthorized access to systems and data.

Full entry →
Full Identity protection glossary entry →

Term 353

Identity provider

An identity provider (IdP) is a system that creates, stores, and manages digital identities and authenticates users for other applications and services.

Full entry →
Full Identity provider glossary entry →

Term 354

IDS

An IDS is a security system that monitors network or system traffic for suspicious activity and alerts administrators to potential threats, but does not actively block them.

Full entry →
Full IDS glossary entry →

Term 355

IIoT

IIoT (Industrial Internet of Things) connects industrial machines and sensors to networks for data collection, analysis, and automation in manufacturing, energy, and utilities.

Full entry →
Full IIoT glossary entry →

Term 356

IKE

IKE (Internet Key Exchange) is a protocol used to set up a secure, authenticated communication channel between two parties by establishing and managing the Security Associations for IPsec.

Full entry →
Full IKE glossary entry →

Term 357

Impersonation

Impersonation is a security attack where an attacker pretends to be a legitimate person or system to gain unauthorized access, steal data, or commit fraud.

Full entry →
Full Impersonation glossary entry →

Term 358

Implicit deny

Implicit deny is a security rule that automatically blocks any network traffic that is not explicitly allowed by an access control list or firewall rule.

Full entry →
Full Implicit deny glossary entry →

Term 359

Inbound ACL

An inbound ACL is a set of rules applied to network traffic entering an interface that decides whether to allow or block that traffic based on criteria like source IP, destination port, or protocol.

Full entry →
Full Inbound ACL glossary entry →

Term 360

Incident

An incident is a security event that violates an organization's policies or threatens its data, systems, or operations, requiring a structured response.

Full entry →
Full Incident glossary entry →
← Part 11Part 13 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12currentPart 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→