Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 22

Acronym study

SC-900 Acronyms — Part 22 of 29

Terms 631–660 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 21Part 22 of 29Part 23 →

Term 631

Risk-based vulnerability management

Risk-based vulnerability management is a cybersecurity approach that prioritizes the fixing of security weaknesses based on the level of risk they pose to an organization's specific environment, rather than just addressing all vulnerabilities in the order they are found.

Full entry →
Full Risk-based vulnerability management glossary entry →

Term 632

Rogue AP

A Rogue Access Point is an unauthorized wireless access point connected to a network without the network administrator's permission, creating a serious security vulnerability.

Full entry →
Full Rogue AP glossary entry →

Term 633

Role

A role is a named set of permissions that can be assigned to users or groups to control access to resources in an IT environment.

Full entry →
Full Role glossary entry →

Term 634

Role assignment

Role assignment is the process of granting a specific set of permissions to a user, group, or service principal so they can perform certain actions within a system.

Full entry →
Full Role assignment glossary entry →

Term 635

Role group

A role group is a collection of permissions in Microsoft 365 or Azure that bundles multiple administrative roles into a single unit for easier assignment.

Full entry →
Full Role group glossary entry →

Term 636

Root user

The root user is the superuser on Linux and Unix-like systems with unrestricted permissions to execute any command and access any file on the system.

Full entry →
Full Root user glossary entry →

Term 637

Rootkit

A rootkit is a type of malware that hides its presence and the presence of other malicious software on a computer, often by modifying the operating system itself.

Full entry →
Full Rootkit glossary entry →

Term 638

Route 53

Route 53 is Amazon Web Services’ cloud-based Domain Name System (DNS) web service that translates human-readable domain names into IP addresses and routes end-user requests to internet applications.

Full entry →
Full Route 53 glossary entry →

Term 639

Route table

A route table is a set of rules, called routes, that determine where network traffic from a subnet or virtual network is directed.

Full entry →
Full Route table glossary entry →

Term 640

RPO

Recovery Point Objective (RPO) is the maximum acceptable amount of data loss measured in time, defining how recent data must be to resume operations after a disruption.

Full entry →
Full RPO glossary entry →

Term 641

RTO

Recovery Time Objective is the maximum acceptable time to restore a system or data after a disaster, defining how quickly normal operations must resume.

Full entry →
Full RTO glossary entry →

Term 642

Rule-based access control

Rule-based access control (RuBAC) is a method of managing access to resources by evaluating a set of predefined rules that combine conditions such as time, location, device, and user attributes to allow or deny access.

Full entry →
Full Rule-based access control glossary entry →

Term 643

S3 bucket policy

An S3 bucket policy is a JSON-based resource-based access control document that defines who can access an Amazon S3 bucket and its objects, and what actions they can perform.

Full entry →
Full S3 bucket policy glossary entry →

Term 644

S3 lifecycle policy

An S3 lifecycle policy is a set of rules that automatically transitions objects between storage classes or deletes them after a specified time to optimize cost and manage data lifecycles.

Full entry →
Full S3 lifecycle policy glossary entry →

Term 645

Safe Attachments

Safe Attachments is a Microsoft Defender for Office 365 feature that opens email attachments in a virtual sandbox to detect and block malicious content before they reach your inbox.

Full entry →
Full Safe Attachments glossary entry →

Term 646

Safe Links

Safe Links is a Microsoft Defender for Office 365 feature that scans URLs in emails and documents in real time to protect users from malicious websites.

Full entry →
Full Safe Links glossary entry →

Term 647

Safeguard

A safeguard is a control, measure, or action designed to protect an organization's assets from threats, vulnerabilities, and risks.

Full entry →
Full Safeguard glossary entry →

Term 648

SAML

Security Assertion Markup Language (SAML) is an open standard that allows one system to securely tell another system that a user is who they say they are, without sharing the user's password.

Full entry →
Full SAML glossary entry →

Term 649

SAST

Static Application Security Testing is a white-box method of analyzing source code, bytecode, or compiled binaries for security vulnerabilities without executing the program.

Full entry →
Full SAST glossary entry →

Term 650

Savings Plan

A flexible pricing model from cloud providers that gives you discounted rates on compute usage in exchange for a commitment to a consistent amount of spending over a one- or three-year term.

Full entry →
Full Savings Plan glossary entry →

Term 651

SBOM

An SBOM is a formal, machine-readable inventory of all software components and dependencies used in a software application or system.

Full entry →
Full SBOM glossary entry →

Term 652

SCA

SCA (Software Composition Analysis) is a security testing method that automatically identifies open-source components, libraries, and dependencies in software to find known vulnerabilities and license compliance issues.

Full entry →
Full SCA glossary entry →

Term 653

SCADA

SCADA is an industrial control system that monitors and controls infrastructure processes like power grids, water treatment, and pipelines.

Full entry →
Full SCADA glossary entry →

Term 654

Scope

In IT, scope defines the boundaries, goals, and deliverables of a project, assessment, or engagement, specifying what is included and what is excluded.

Full entry →
Full Scope glossary entry →

Term 655

SCP

SCP (Secure Copy Protocol) is a network protocol used to securely transfer files between computers over an encrypted SSH connection.

Full entry →
Full SCP glossary entry →

Term 656

SDLC

The Software Development Life Cycle (SDLC) is a structured process used by IT teams to plan, create, test, and deploy software in a reliable and organized way.

Full entry →
Full SDLC glossary entry →

Term 657

Seamless SSO

Seamless SSO is a technology that lets you sign into multiple applications automatically after logging in once, without being prompted for credentials again.

Full entry →
Full Seamless SSO glossary entry →

Term 658

Secret Manager

A Secret Manager is a centralized tool that securely stores, manages, and controls access to sensitive information like passwords, API keys, and certificates, often automating their rotation and injection into applications.

Full entry →
Full Secret Manager glossary entry →

Term 659

Secrets management

Secrets management is the practice of securely storing, controlling access to, and regularly rotating sensitive credentials like passwords, API keys, and certificates used by applications and services.

Full entry →
Full Secrets management glossary entry →

Term 660

Secrets Manager

AWS Secrets Manager is a fully managed service that helps you protect access to your applications, services, and IT resources by securely storing, rotating, and controlling access to secrets like database passwords, API keys, and credentials.

Full entry →
Full Secrets Manager glossary entry →
← Part 21Part 23 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22currentPart 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→