Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 21

Acronym study

SC-900 Acronyms — Part 21 of 29

Terms 601–630 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 20Part 21 of 29Part 22 →

Term 601

Red team

A red team is a group of security professionals who simulate real-world attacks on an organization's systems, people, and facilities to test the effectiveness of its defenses.

Full entry →
Full Red team glossary entry →

Term 602

Redundancy

Redundancy is the practice of adding extra components or systems so that if one fails, another can take over without interruption.

Full entry →
Full Redundancy glossary entry →

Term 603

Reference monitor

A trusted, always-active component of a computer's operating system that enforces security policies by checking every access request to files, memory, or devices before allowing it.

Full entry →
Full Reference monitor glossary entry →

Term 604

Refresh token

A refresh token is a special credential used to obtain new access tokens without requiring the user to re-authenticate, enabling long-lived sessions in modern identity systems.

Full entry →
Full Refresh token glossary entry →

Term 605

Regulatory requirement

A regulatory requirement is a rule issued by a government or industry authority that organizations must follow, often to protect data, ensure safety, or maintain fair practices.

Full entry →
Full Regulatory requirement glossary entry →

Term 606

Remediation script

A remediation script is an automated set of instructions that detects and fixes common IT security or configuration issues without manual intervention.

Full entry →
Full Remediation script glossary entry →

Term 607

Remote Authentication Dial-in User Service

RADIUS is a network protocol that provides centralized authentication, authorization, and accounting for users trying to connect to a network service.

Full entry →
Full Remote Authentication Dial-in User Service glossary entry →

Term 608

Remote wipe

Remote wipe is a security feature that allows an administrator or user to remotely and permanently delete data from a lost or stolen device to prevent unauthorized access.

Full entry →
Full Remote wipe glossary entry →

Term 609

Reserved Instance

A Reserved Instance is a billing discount applied to your usage of virtual machines or other compute resources when you commit to using a specific configuration for a one- or three-year term.

Full entry →
Full Reserved Instance glossary entry →

Term 610

Residual risk

Residual risk is the level of risk that remains after all security controls and countermeasures have been applied.

Full entry →
Full Residual risk glossary entry →

Term 611

Resource group

A logical container in Microsoft Azure that holds related resources for an application or solution, enabling unified management, security, and billing.

Full entry →
Full Resource group glossary entry →

Term 612

Resource hierarchy

Resource hierarchy is the structured, parent-child ordering of cloud resources that governs access control, policy inheritance, and resource organization across a cloud platform.

Full entry →
Full Resource hierarchy glossary entry →

Term 613

Resource lock

A resource lock is a cloud governance feature that prevents accidental deletion or modification of critical cloud resources by applying a read-only or delete-only restriction at the resource, resource group, or subscription level.

Full entry →
Full Resource lock glossary entry →

Term 614

Resource policy

A resource policy is a set of rules that controls who can access a specific cloud resource and what actions they can perform on it.

Full entry →
Full Resource policy glossary entry →

Term 615

Retention label

A retention label is a tag applied to emails, documents, or files in Microsoft 365 that tells the system how long to keep the item and what to do with it when the time is up.

Full entry →
Full Retention label glossary entry →

Term 616

Retention policy

A retention policy is a set of rules that determines how long an organization keeps its data and what happens to it when the retention period expires.

Full entry →
Full Retention policy glossary entry →

Term 617

Retry policy

A retry policy is a set of rules that automatically re-attempts a failed operation after a defined interval, up to a maximum number of tries.

Full entry →
Full Retry policy glossary entry →

Term 618

RFID

RFID uses radio waves to wirelessly identify and track tags attached to objects, enabling automatic data capture without line-of-sight.

Full entry →
Full RFID glossary entry →

Term 619

Risk

Risk is the possibility that an event or action will negatively affect an organization's ability to achieve its goals, often measured in terms of likelihood and impact.

Full entry →
Full Risk glossary entry →

Term 620

Risk acceptance

Risk acceptance is a risk management strategy where an organization acknowledges a potential risk but decides to tolerate it without taking active measures to reduce or eliminate it.

Full entry →
Full Risk acceptance glossary entry →

Term 621

Risk appetite

Risk appetite is the amount of risk an organization is willing to accept in pursuit of its objectives, defining the boundaries for decision-making.

Full entry →
Full Risk appetite glossary entry →

Term 622

Risk assessment

Risk assessment is the process of identifying, analyzing, and evaluating potential threats to an organization's assets to determine the likelihood and impact of those threats, and to decide on appropriate treatment measures.

Full entry →
Full Risk assessment glossary entry →

Term 623

Risk avoidance

Risk avoidance is a risk management strategy that involves eliminating any activity, process, or technology that introduces a specific risk, rather than trying to reduce or accept it.

Full entry →
Full Risk avoidance glossary entry →

Term 624

Risk management

Risk management is the process of identifying, assessing, and controlling threats to an organization's capital, earnings, and operations, including IT systems and data.

Full entry →
Full Risk management glossary entry →

Term 625

Risk mitigation

Risk mitigation is the process of reducing the likelihood or impact of a potential security threat to an acceptable level through specific controls and actions.

Full entry →
Full Risk mitigation glossary entry →

Term 626

Risk register

A risk register is a formal document that lists and tracks all identified risks to an IT project, system, or organization, including their assessed impact, probability, and planned responses.

Full entry →
Full Risk register glossary entry →

Term 627

Risk score

A risk score is a numerical value that represents the level of risk associated with a given asset, threat, or vulnerability in a security context.

Full entry →
Full Risk score glossary entry →

Term 628

Risk tolerance

Risk tolerance is the amount of risk an organization or individual is willing to accept in pursuit of its objectives, defining the boundary between acceptable and unacceptable losses.

Full entry →
Full Risk tolerance glossary entry →

Term 629

Risk transfer

Risk transfer is the practice of shifting the financial burden of a potential loss to another party, typically through insurance or contracts.

Full entry →
Full Risk transfer glossary entry →

Term 630

Risk-based access

Risk-based access is a security model that dynamically adjusts access permissions based on the assessed risk of each access request, rather than granting a static level of access to all users.

Full entry →
Full Risk-based access glossary entry →
← Part 20Part 22 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21currentPart 22Part 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→