Term 571
Privileged access management
Privileged access management is a cybersecurity practice that controls and monitors the elevated access rights of users who have special permissions to critical systems and data.
Acronym study
Terms 571–600 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 571
Privileged access management is a cybersecurity practice that controls and monitors the elevated access rights of users who have special permissions to critical systems and data.
Term 572
A privileged account is a user account that has extra permissions beyond a standard user, allowing it to install software, change system settings, or access sensitive data.
Term 573
Privileged Identity Management is a security system that controls, monitors, and audits access to sensitive systems by granting elevated permissions only when needed and for a limited time.
Term 574
Proactive remediations are automated actions taken in advance to fix or prevent known IT issues before they affect users or systems.
Term 575
A productivity app is a software application designed to help individuals and teams complete tasks efficiently, manage time, and organize work within a business environment.
Term 576
A project is a temporary endeavor with a defined beginning and end, undertaken to create a unique product, service, or result, managed through specific processes in IT environments.
Term 577
Protected health information (PHI) is any health data that can identify an individual and is subject to strict privacy and security regulations.
Term 578
Provisioning is the process of setting up and configuring IT resources, such as user accounts, devices, or network services, so they are ready for use.
Term 579
A proxy is an intermediary server that sits between a client and a destination server, forwarding requests and responses while providing security, privacy, and control.
Term 580
A proxy log is a record of all traffic that passes through a proxy server, capturing details like source IP, destination URL, timestamps, and content type for security analysis and monitoring.
Term 581
Pseudonymization is a data processing technique that replaces private identifiers with artificial identifiers, or pseudonyms, to protect personal data while still allowing for analysis and processing.
Term 582
A pre-shared key (PSK) is a secret string of characters shared in advance between two parties to authenticate and encrypt wireless or VPN communications.
Term 583
Public key authentication is a cryptographic method that uses a pair of keys—a public key shared openly and a private key kept secret—to verify identity and secure communications.
Term 584
Public Key Infrastructure is a system of policies, roles, hardware, and software that manages digital certificates and public-key encryption to secure communications and verify identities online.
Term 585
A public subnet is a segment of a cloud Virtual Private Cloud (VPC) or traditional network that has a direct route to the internet via an Internet Gateway, allowing resources within it to send and receive traffic from the public internet.
Term 586
A purple team is a collaborative approach in cybersecurity where the offensive (red) and defensive (blue) teams work together to improve an organization's security posture by sharing insights and tactics.
Term 587
Qualitative risk analysis is a subjective, scenario-based approach to prioritizing information security risks by evaluating their likelihood and potential impact using predefined scales rather than numerical calculations.
Term 588
A quality update policy is a set of rules and schedules that IT administrators use to control which Windows updates are deployed to devices to ensure stability, security, and compatibility.
Term 589
Quantitative risk analysis is a structured process that uses numerical data and statistical methods to calculate the potential financial impact of risks on an organization's assets and projects.
Term 590
Quarantine is a security process that isolates a potentially malicious file, email, or device from the rest of the system to prevent harm while it is analyzed or remediated.
Term 591
Radio Frequency Identification (RFID) is a wireless technology that uses radio waves to automatically identify and track tags attached to objects, people, or animals without requiring direct line-of-sight.
Term 592
RADIUS is a network protocol that provides centralized authentication, authorization, and accounting management for users who connect and use a network service.
Term 593
Ransomware is a type of malicious software that encrypts a victim's files or locks them out of their system, demanding payment, usually in cryptocurrency, to restore access.
Term 594
A Rapid Security Response is an emergency software patch from Apple that fixes critical security flaws in iOS, iPadOS, macOS, and other Apple operating systems without requiring a full system update.
Term 595
RBAC is a method of restricting network access based on the roles of individual users within an organization, where permissions are assigned to roles rather than to individuals directly.
Term 596
Read-access geo-redundant storage (RA-GRS) is a cloud storage replication option that maintains three synchronous copies in one primary region and three asynchronous copies in a secondary region, while allowing read access to the secondary copy even during normal operations.
Term 597
A Reader role is a predefined set of permissions in identity and governance systems that allows a user to view resources and data but not create, modify, or delete anything.
Term 598
Records management is the systematic control of an organization's records, from creation or receipt through processing, distribution, maintenance, storage, retrieval, and disposal, ensuring integrity, compliance, and availability.
Term 599
Recovery is the process of restoring systems, data, and operations after a security incident, failure, or disaster to return to normal functioning.
Term 600
A recovery key is a unique code or physical device used to regain access to an encrypted system or account when the primary authentication method, such as a password or biometric, is lost or unavailable.