Term 421
Least privilege
Least privilege is a security principle that means giving users, systems, or programs only the minimum permissions they need to do their job and nothing more.
Acronym study
Terms 421–450 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 421
Least privilege is a security principle that means giving users, systems, or programs only the minimum permissions they need to do their job and nothing more.
Term 422
A legal requirement is a mandatory rule or standard set by law or regulation that an organization must follow, often concerning data protection, privacy, or security practices.
Term 423
Lessons learned is the process of capturing, analyzing, and documenting knowledge gained from past incidents or projects to improve future security operations and prevent recurrence of problems.
Term 424
License assignment is the process of linking a purchased software license to a specific user or device so that they are authorized to use the software.
Term 425
Lightweight Directory Access Protocol (LDAP) is a standard protocol used to access and manage directory information over a network, such as user credentials and permissions.
Term 426
A line-of-business app is a software application that is essential for running a specific core business process, such as accounting, inventory management, or customer relationship management.
Term 427
LLDP (Link Layer Discovery Protocol) is a vendor-neutral protocol used by network devices to advertise their identity, capabilities, and neighbors on a local Ethernet network.
Term 428
Log management is the process of collecting, storing, analyzing, and disposing of log data generated by computer systems, networks, and applications to ensure security, compliance, and operational health.
Term 429
Log retention is the practice of storing log data for a defined period to meet security, compliance, and operational needs.
Term 430
A log source is any system, device, or application that generates and records event data, such as timestamps and activities, for monitoring and security analysis.
Term 431
MAC (Media Access Control) is a unique hardware identifier assigned to network interfaces for communication on a local network segment.
Term 432
MAC filtering is a security practice that allows or denies network access to devices based on their unique Media Access Control (MAC) address.
Term 433
Amazon Macie is a fully managed data security and privacy service that uses machine learning and pattern matching to discover, classify, and protect sensitive data stored in Amazon Web Services (AWS).
Term 434
Malware is any software intentionally designed to cause damage, disrupt operations, steal data, or gain unauthorized access to computer systems.
Term 435
Malware analysis is the process of examining malicious software to understand its behavior, origin, and impact, enabling defenders to detect, contain, and prevent future attacks.
Term 436
Malware symptoms are the observable signs on a computer or network that indicate a malicious program may have infected the system, such as slow performance, unexpected pop-ups, or unusual network activity.
Term 437
Mobile Application Management (MAM) is a set of technologies and policies that allow IT administrators to manage and secure corporate applications on mobile devices without managing the entire device.
Term 438
A cyberattack where an attacker secretly intercepts and potentially alters communication between two parties who believe they are directly communicating with each other.
Term 439
A cybersecurity service that continuously monitors an organization's network and systems to detect threats and respond to them quickly.
Term 440
A managed identity is an automatically managed service principal in Azure that allows your code to authenticate to any service that supports Azure AD authentication without storing credentials.
Term 441
A Management group is a container in Microsoft Azure that helps you organize and manage access, policies, and compliance across multiple Azure subscriptions.
Term 442
Mandatory vacation is a security control that requires employees to take a consecutive period of leave so that any unauthorized activities or irregularities in their work can be detected by others.
Term 443
Maximum tolerable downtime (MTD) is the total amount of time a business process or system can be unavailable before causing irreparable harm to the organization.
Term 444
MDM stands for Mobile Device Management, a technology that allows IT administrators to securely manage, monitor, and enforce policies on mobile devices like smartphones and tablets from a central console.
Term 445
A meeting policy is a set of rules and configurations that control how online meetings are created, joined, and conducted within a collaboration platform.
Term 446
A Memorandum of Understanding (MOU) is a formal document that outlines the general terms and intentions of an agreement between two or more parties before a legally binding contract is signed.
Term 447
A centralized dashboard within a software platform that displays system notifications, alerts, and messages about account status, security events, and service updates.
Term 448
A messaging policy is a set of rules that govern how an organization's email and instant messaging systems handle, route, secure, and retain messages to ensure compliance, security, and operational efficiency.
Term 449
Metadata is data that describes other data, providing context such as when a file was created, who created it, or its size.
Term 450
Multi-Factor Authentication (MFA) is a security method that requires a user to verify their identity using two or more different types of evidence, such as a password plus a code from a phone, before they can access an account or system.