Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Microsoft Security, Compliance, and Identity Fundamentals SC-900/Acronyms/Part 7

Acronym study

SC-900 Acronyms — Part 7 of 29

Terms 181–210 of 863 SC-900 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 6Part 7 of 29Part 8 →

Term 181

DAST

DAST (Dynamic Application Security Testing) is a security testing method that finds vulnerabilities in running web applications by simulating real attacks from the outside.

Full entry →
Full DAST glossary entry →

Term 182

Data classification

Data classification is the process of organizing data into categories based on its sensitivity, value, and criticality to an organization, so that appropriate security controls can be applied.

Full entry →
Full Data classification glossary entry →

Term 183

Data controller

An entity that determines the purposes and means of processing personal data.

Full entry →
Full Data controller glossary entry →

Term 184

Data custodian

A data custodian is the person or team responsible for the safe handling, storage, and transport of data on behalf of the data owner.

Full entry →
Full Data custodian glossary entry →

Term 185

Data lifecycle management

Data lifecycle management is the process of managing data from its creation to its deletion, ensuring it is stored, used, and disposed of in a way that meets security, compliance, and business needs.

Full entry →
Full Data lifecycle management glossary entry →

Term 186

Data Loss Prevention

Data Loss Prevention (DLP) is a set of tools and processes that help organizations stop sensitive information from being shared, leaked, or stolen, whether accidentally or on purpose.

Full entry →
Full Data Loss Prevention glossary entry →

Term 187

Data masking

Data masking is a security technique that replaces sensitive data with realistic but fictional data so it can be used safely in non-production environments.

Full entry →
Full Data masking glossary entry →

Term 188

Data owner

A senior-level person who is accountable for the classification, protection, and appropriate use of a specific set of data within an organization.

Full entry →
Full Data owner glossary entry →

Term 189

Data plane

The part of a network device that actually forwards data packets from one interface to another based on decisions made by the control plane.

Full entry →
Full Data plane glossary entry →

Term 190

Data processor

A data processor is a person or organization that processes personal data on behalf of a data controller, following the controller's instructions and under their authority.

Full entry →
Full Data processor glossary entry →

Term 191

Data protection

Data protection refers to the practices and technologies used to safeguard personal and sensitive information from unauthorized access, loss, or corruption.

Full entry →
Full Data protection glossary entry →

Term 192

Data remanence

Data remanence is the residual representation of data that remains on a storage medium even after attempts to erase or remove it.

Full entry →
Full Data remanence glossary entry →

Term 193

Data retention

Data retention is the practice of keeping data for a specific period to meet legal, business, or compliance needs, and then securely disposing of it.

Full entry →
Full Data retention glossary entry →

Term 194

Data sanitization

Data sanitization is the process of deliberately, permanently, and irreversibly removing or destroying data stored on a device or media so that it cannot be recovered or reconstructed by any known method.

Full entry →
Full Data sanitization glossary entry →

Term 195

Data security

Data security is the practice of protecting digital information from unauthorized access, corruption, or theft throughout its lifecycle.

Full entry →
Full Data security glossary entry →

Term 196

DDoS

A DDoS (Distributed Denial-of-Service) attack is a malicious attempt to disrupt normal traffic of a targeted server, service, or network by overwhelming it with a flood of internet traffic from multiple compromised systems.

Full entry →
Full DDoS glossary entry →

Term 197

Deauthentication attack

A deauthentication attack is a wireless network exploit where an attacker sends fake disconnection frames to force devices off a Wi-Fi network, often used to capture handshake data or disrupt connectivity.

Full entry →
Full Deauthentication attack glossary entry →

Term 198

Decryption

Decryption is the process of converting encrypted or scrambled data back into its original, readable form using a specific key or method.

Full entry →
Full Decryption glossary entry →

Term 199

Dedicated security mode

A configuration in IT systems where security services or appliances operate in an isolated, single-purpose environment to prevent interference with other functions and reduce attack surface.

Full entry →
Full Dedicated security mode glossary entry →

Term 200

Defender for Cloud

Microsoft Defender for Cloud is a cloud security posture management (CSPM) and cloud workload protection platform (CWPP) that provides unified security management and threat protection across hybrid and multi-cloud environments.

Full entry →
Full Defender for Cloud glossary entry →

Term 201

Defender for Cloud Apps

Defender for Cloud Apps is a Microsoft cloud access security broker (CASB) that helps you discover, protect, and govern your cloud applications and data across multiple cloud environments.

Full entry →
Full Defender for Cloud Apps glossary entry →

Term 202

Defender for Endpoint

Microsoft Defender for Endpoint is a cloud-delivered enterprise security solution designed to protect devices from cyber threats using behavioral analysis, machine learning, and automated investigation.

Full entry →
Full Defender for Endpoint glossary entry →

Term 203

Defender for Identity

Defender for Identity is a cloud-based security solution that detects, investigates, and responds to advanced identity threats targeting on-premises Active Directory and cloud identities.

Full entry →
Full Defender for Identity glossary entry →

Term 204

Defender for Office 365

Microsoft Defender for Office 365 is a cloud-based email security service that protects organizations against advanced threats like phishing, malware, and business email compromise by scanning emails, attachments, and links in real time.

Full entry →
Full Defender for Office 365 glossary entry →

Term 205

Defender policy

A Defender policy is a set of security rules configured in Microsoft 365 Defender that controls how endpoint detection and response (EDR), antivirus, firewall, and other protection features behave on managed devices.

Full entry →
Full Defender policy glossary entry →

Term 206

Defense in depth

Defense in depth is a cybersecurity strategy that uses multiple layers of security controls to protect information and systems, so if one layer fails, another layer is already in place to stop the attack.

Full entry →
Full Defense in depth glossary entry →

Term 207

Denial-of-service

A Denial-of-service (DoS) attack is an attempt to make a computer, network, or online service unavailable to its intended users by overwhelming it with fake traffic or requests.

Full entry →
Full Denial-of-service glossary entry →

Term 208

Dependency scanning

Dependency scanning is the automated process of checking software components for known security vulnerabilities and outdated versions.

Full entry →
Full Dependency scanning glossary entry →

Term 209

Deprovisioning

Deprovisioning is the process of removing a user's access to systems and data when they no longer need it, typically when they leave an organization or change roles.

Full entry →
Full Deprovisioning glossary entry →

Term 210

Detection engineering

Detection engineering is the practice of designing, building, and refining security monitoring rules and signals to identify malicious activity in an IT environment.

Full entry →
Full Detection engineering glossary entry →
← Part 6Part 8 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7currentPart 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21Part 22Part 23Part 24Part 25Part 26Part 27Part 28Part 29

Study resources

All SC-900 Acronyms→SC-900 Practice Tests→SC-900 Study Guide→Exam Domains→