Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Security+ SY0-701/Acronyms/Part 17

Acronym study

SY0-701 Acronyms — Part 17 of 21

Terms 481–510 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 16Part 17 of 21Part 18 →

Term 481

Security kernel

The security kernel is the core, trusted part of an operating system that enforces access control and security policies for all system operations.

Full entry →
Full Security kernel glossary entry →

Term 482

Security misconfiguration

Security misconfiguration occurs when security settings are defined, implemented, or maintained incorrectly, leaving systems, applications, or networks vulnerable to unauthorized access or data breaches.

Full entry →
Full Security misconfiguration glossary entry →

Term 483

Security model

A security model is a formal framework that defines how subjects (users, processes) can access objects (files, resources) based on rules, ensuring confidentiality, integrity, and availability.

Full entry →
Full Security model glossary entry →

Term 484

Security operations center

A Security Operations Center (SOC) is a centralized team and facility that monitors, detects, analyzes, and responds to cybersecurity incidents across an organization's IT environment 24/7.

Full entry →
Full Security operations center glossary entry →

Term 485

Security pillar

The Security pillar is a set of best practices for designing and operating cloud systems that protect data, systems, and assets through confidentiality, integrity, and availability controls.

Full entry →
Full Security pillar glossary entry →

Term 486

Security policy

A security policy is a formal set of rules and guidelines that an organization establishes to protect its information assets and technology resources.

Full entry →
Full Security policy glossary entry →

Term 487

Security posture

An organization's overall cybersecurity strength, including policies, controls, and readiness to defend against and respond to threats.

Full entry →
Full Security posture glossary entry →

Term 488

Security recommendation

A security recommendation is a prescribed action, configuration, or update that aims to reduce risk and protect systems, data, and users from known threats or vulnerabilities.

Full entry →
Full Security recommendation glossary entry →

Term 489

Security strategy

A security strategy is a high-level plan that outlines how an organization protects its information assets, aligns security with business goals, and manages risk over time.

Full entry →
Full Security strategy glossary entry →

Term 490

Security update

A security update is a software patch released to fix a vulnerability that could be exploited by attackers to compromise a system.

Full entry →
Full Security update glossary entry →

Term 491

Segment

A segment is a division of a larger network, such as a collision domain, broadcast domain, or a portion of a TCP data stream, used to organize traffic and improve performance.

Full entry →
Full Segment glossary entry →

Term 492

Sender Policy Framework

Sender Policy Framework (SPF) is an email authentication method that prevents spammers from sending emails that appear to come from your domain by listing which servers are allowed to send email for that domain.

Full entry →
Full Sender Policy Framework glossary entry →

Term 493

Serverless security

Serverless security is the practice of protecting applications that run on serverless computing platforms, where the cloud provider manages the infrastructure and the customer is responsible for securing the code, data, and access controls.

Full entry →
Full Serverless security glossary entry →

Term 494

Service account

A service account is a special type of account used by an application or a virtual machine, rather than a human user, to authenticate and interact with cloud services and APIs securely.

Full entry →
Full Service account glossary entry →

Term 495

Service Control Policy

A Service Control Policy (SCP) is a centralized governance tool in AWS Organizations that allows you to define and enforce maximum permissions for all accounts in an organization, acting as a security guardrail that limits what actions principals can perform.

Full entry →
Full Service Control Policy glossary entry →

Term 496

Session token

A session token is a unique identifier generated by a server that allows a user to remain authenticated without re-entering their credentials during a single browsing session.

Full entry →
Full Session token glossary entry →

Term 497

SFTP

SFTP (Secure File Transfer Protocol) is a network protocol that provides secure file transfer over SSH, encrypting both commands and data.

Full entry →
Full SFTP glossary entry →

Term 498

SHA-256

SHA-256 is a cryptographic hash function that takes any input data and produces a fixed 256-bit string of characters, like a unique digital fingerprint, used to verify data integrity and secure passwords.

Full entry →
Full SHA-256 glossary entry →

Term 499

SHA-3

SHA-3 is the latest member of the Secure Hash Algorithm family, a standardized cryptographic hash function used to ensure data integrity and authenticity in IT systems.

Full entry →
Full SHA-3 glossary entry →

Term 500

Shared access

Shared access is a permission model where multiple users, systems, or services are granted common access rights to a resource such as a file, database, network drive, or cloud storage.

Full entry →
Full Shared access glossary entry →

Term 501

Shared access signature

A shared access signature (SAS) is a secure, time-limited URL that grants granular access to specific resources in cloud storage, allowing you to delegate permissions without sharing your account keys.

Full entry →
Full Shared access signature glossary entry →

Term 502

Shared account

A shared account is a user account that is used by multiple people instead of being assigned to a single individual.

Full entry →
Full Shared account glossary entry →

Term 503

Shared VPC

A Shared VPC allows multiple projects or accounts within a cloud environment to use the same Virtual Private Cloud (VPC) network, enabling centralized management and isolation of resources.

Full entry →
Full Shared VPC glossary entry →

Term 504

Shift left security

Shift left security is the practice of integrating security testing and controls earlier in the software development lifecycle, rather than waiting until after deployment.

Full entry →
Full Shift left security glossary entry →

Term 505

Shoulder surfing

A social engineering attack where an attacker observes a victim's screen or keyboard to steal passwords or sensitive information.

Full entry →
Full Shoulder surfing glossary entry →

Term 506

SIEM

SIEM (Security Information and Event Management) is a system that collects and analyzes log data from across an IT environment to detect and respond to security threats in real time.

Full entry →
Full SIEM glossary entry →

Term 507

SIEM query

A SIEM query is a search command used in a Security Information and Event Management system to find, filter, and analyze security-related log data from across an organization's IT environment.

Full entry →
Full SIEM query glossary entry →

Term 508

Silver ticket

A forged Kerberos service ticket that grants access to a specific service in a Windows domain without requiring the user's password.

Full entry →
Full Silver ticket glossary entry →

Term 509

SMB

SMB is a network file-sharing protocol that allows applications to read, write, and request services from server programs in a computer network.

Full entry →
Full SMB glossary entry →

Term 510

Smishing

Smishing is a social engineering attack that uses deceptive text messages to trick recipients into revealing sensitive information or installing malware.

Full entry →
Full Smishing glossary entry →
← Part 16Part 18 →

Acronym parts

Part 1Part 2Part 3Part 4Part 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17currentPart 18Part 19Part 20Part 21

Study resources

All SY0-701 Acronyms→SY0-701 Practice Tests→SY0-701 Study Guide→Exam Domains→