Term 391
Intune
Microsoft Intune is a cloud-based service that helps organizations manage their users' devices and applications, ensuring security and compliance without needing to own or control the physical hardware.
Acronym study
Terms 391–420 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 391
Microsoft Intune is a cloud-based service that helps organizations manage their users' devices and applications, ensuring security and compliance without needing to own or control the physical hardware.
Term 392
IOA (Indicator of Attack) is a security concept that focuses on detecting the intent and sequence of actions leading up to a cyber attack, rather than just the artifacts left behind after a breach.
Term 393
IOC stands for Indicator of Compromise, which is forensic evidence that a system has been breached or infected by malware.
Term 394
IoT (Internet of Things) is a network of physical devices embedded with sensors and software to connect and exchange data over the internet.
Term 395
A Cisco IOS command that forwards broadcast traffic from one subnet to a specific server on another subnet, allowing devices to obtain IP configuration or other services without needing a router or server on their local network.
Term 396
IP Source Guard is a network security feature that blocks IP address spoofing by verifying that each packet's source IP address matches an authorized binding assigned to that switch port.
Term 397
An Intrusion Prevention System (IPS) is a network security device that monitors traffic in real time and automatically blocks threats before they reach your systems.
Term 398
IPsec is a suite of protocols used to secure Internet Protocol (IP) communications by encrypting and authenticating each IP packet in a data stream.
Term 399
iptables is a command-line firewall utility in Linux that uses rules to allow or block network traffic based on packet attributes like source IP, destination port, or protocol.
Term 400
ISO 27001 is an international standard that specifies the requirements for establishing, implementing, maintaining, and continually improving an information security management system (ISMS).
Term 401
Job rotation is a security governance practice where employees periodically switch roles or responsibilities to reduce risk, prevent fraud, and ensure organizational resilience.
Term 402
Just-enough access is an identity and access management principle that grants users only the minimum permissions required to perform their specific job tasks, reducing security risks.
Term 403
Just-in-time access is a security method that grants users elevated permissions only for a limited time exactly when they need them, then automatically removes those permissions.
Term 404
A JSON Web Token (JWT) is a compact, self-contained token used to securely transmit information between parties as a JSON object.
Term 405
Kerberoasting is an attack where a hacker steals service account password hashes from Active Directory to crack them offline and gain unauthorized access.
Term 406
Kerberos is a network authentication protocol that uses tickets and symmetric-key cryptography to verify the identity of users and services in a secure, non-repudiable way.
Term 407
A key pair is a set of two cryptographic keys—a public key and a private key—used together to encrypt and decrypt data or to create and verify digital signatures.
Term 408
A keylogger is a type of surveillance software or hardware that records every keystroke you type on your keyboard, often used without your knowledge to steal passwords and other sensitive information.
Term 409
A kill chain is a step-by-step model that describes the stages of a cyberattack, from initial reconnaissance to the final objective, helping defenders understand and disrupt each phase.
Term 410
KMS (Key Management Service) is a Microsoft technology that automates volume licensing activation for Windows and Office products within an organization's network.
Term 411
KMS encryption is a managed service that creates, stores, and controls cryptographic keys used to encrypt data in the cloud.
Term 412
A file used by SSH to store the public keys of remote servers, allowing the client to verify the server's identity and prevent man-in-the-middle attacks.
Term 413
Kubernetes RBAC is a security mechanism that controls who can access and perform actions on resources in a Kubernetes cluster based on their role.
Term 414
Kubernetes security is the practice of protecting containerized applications, the Kubernetes cluster itself, and the underlying infrastructure from unauthorized access, data breaches, and system vulnerabilities.
Term 415
Labels are descriptive text or tags attached to IT resources to organize, identify, and manage them based on attributes like purpose, environment, or owner.
Term 416
Latency routing is a DNS-based traffic management method that directs user requests to the server location which can provide the lowest network latency for that specific user.
Term 417
Lateral movement is the technique attackers use to move through a network from one compromised system to another, seeking sensitive data or higher privileges.
Term 418
LDAP is a protocol used to access and manage directory information over a network, such as user accounts and permissions.
Term 419
LDAPS is a secure version of LDAP that encrypts all directory service communications using SSL or TLS.
Term 420
LDAPS encrypts LDAP traffic using SSL/TLS to secure directory queries and authentication over a network.