Courseiva
Knowledge + Practice
CertificationsVendorsCareer RoadmapsLabs & ToolsStudy GuidesGlossaryPractice Questions
C
Courseiva

Free IT certification practice questions with explained answers for CCNA, CompTIA, AWS, Azure, Google Cloud, and more.

Certification Practice Questions

CCNA practice questionsSecurity+ SY0-701 practice questionsAWS SAA-C03 practice questionsAZ-104 practice questionsAZ-900 practice questionsCLF-C02 practice questionsA+ Core 1 practice questionsGoogle Cloud ACE practice questionsCySA+ CS0-003 practice questionsNetwork+ N10-009 practice questions
View all certifications →

Product

CertificationsCertification PathsExam TopicsPractice TestsExam Dumps vs Practice TestsStudy HubComparisons

Company

AboutContactEditorial PolicyQuestion Writing PolicyTrust Center

Legal

Privacy PolicyTerms of Service

Courseiva is a free IT certification practice platform offering original exam-style practice questions, detailed explanations, topic-based practice, mock exams, readiness tracking, and study analytics for Cisco, CompTIA, Microsoft, AWS, and other technology certifications.

© 2026 Courseiva. Courseiva is operated by JTNetSolutions Ltd. All rights reserved.

Courseiva is an independent certification practice platform and is not affiliated with, endorsed by, or sponsored by Cisco, Microsoft, AWS, CompTIA, Google, ISC2, ISACA, or any other certification vendor. Vendor names and certification marks are used only to identify the exams learners are preparing for.

Security+ SY0-701/Acronyms/Part 4

Acronym study

SY0-701 Acronyms — Part 4 of 21

Terms 91–120 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.

← Part 3Part 4 of 21Part 5 →

Term 91

Compliance Manager

A Compliance Manager is a tool or service that helps organizations assess, monitor, and improve their adherence to regulatory standards, industry frameworks, and internal policies.

Full entry →
Full Compliance Manager glossary entry →

Term 92

Compliance policy

A compliance policy is a set of rules that ensures devices, users, and applications meet an organization's security and regulatory requirements before they can access corporate resources.

Full entry →
Full Compliance policy glossary entry →

Term 93

Compliance scan

A compliance scan is an automated security assessment that checks systems, networks, and applications against a defined set of regulatory or organizational standards to verify adherence to required policies.

Full entry →
Full Compliance scan glossary entry →

Term 94

Compliance state

Compliance state is the current status of a system, application, or device indicating whether it meets a defined set of security policies, regulatory requirements, or configuration standards.

Full entry →
Full Compliance state glossary entry →

Term 95

Conditional access

Conditional access is a security framework that evaluates signals like user location, device health, and risk level to grant or block access to resources in real time.

Full entry →
Full Conditional access glossary entry →

Term 96

Conditional Access integration

Conditional Access integration is a security framework that evaluates signals such as user identity, location, device state, and application sensitivity to grant or block access to resources before a session is established.

Full entry →
Full Conditional Access integration glossary entry →

Term 97

Conditional Access policy

A Conditional Access policy is a set of rules in Microsoft Entra ID that automatically grants or blocks access to cloud apps based on signals like user identity, location, device health, and risk level.

Full entry →
Full Conditional Access policy glossary entry →

Term 98

Confidentiality

Confidentiality means keeping sensitive information secret and accessible only to authorized people or systems.

Full entry →
Full Confidentiality glossary entry →

Term 99

Confidentiality Integrity and Availability

The CIA Triad is a foundational security model that ensures data is kept secret, unaltered, and accessible when needed.

Full entry →
Full Confidentiality Integrity and Availability glossary entry →

Term 100

Configuration baseline

A configuration baseline is a fixed reference point that documents the approved hardware, software, settings, and performance parameters of an IT system or network component at a specific point in time.

Full entry →
Full Configuration baseline glossary entry →

Term 101

Connected route

A connected route is a network path that a router knows about automatically because it has a network interface directly connected to that network.

Full entry →
Full Connected route glossary entry →

Term 102

Container security

Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.

Full entry →
Full Container security glossary entry →

Term 103

Credential stuffing

Credential stuffing is a cyberattack where attackers use lists of stolen usernames and passwords to gain unauthorized access to user accounts on different websites.

Full entry →
Full Credential stuffing glossary entry →

Term 104

CRL

A Certificate Revocation List (CRL) is a published list of digital certificates that have been revoked by a Certificate Authority before their scheduled expiration date.

Full entry →
Full CRL glossary entry →

Term 105

Cross-site scripting

Cross-site scripting (XSS) is a security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users, often to steal data or hijack sessions.

Full entry →
Full Cross-site scripting glossary entry →

Term 106

CSR

A Certificate Signing Request is a block of encoded data sent to a Certificate Authority to apply for a digital certificate.

Full entry →
Full CSR glossary entry →

Term 107

DAC

Discretionary Access Control is a security model where the owner of a resource decides who can access it and what permissions they have.

Full entry →
Full DAC glossary entry →

Term 108

Data classification

Data classification is the process of organizing data into categories based on its sensitivity, value, and criticality to an organization, so that appropriate security controls can be applied.

Full entry →
Full Data classification glossary entry →

Term 109

Data Loss Prevention

Data Loss Prevention (DLP) is a set of tools and processes that help organizations stop sensitive information from being shared, leaked, or stolen, whether accidentally or on purpose.

Full entry →
Full Data Loss Prevention glossary entry →

Term 110

Data security

Data security is the practice of protecting digital information from unauthorized access, corruption, or theft throughout its lifecycle.

Full entry →
Full Data security glossary entry →

Term 111

Data VLAN

A Data VLAN is a virtual local area network configured on a switch to carry user-generated traffic, separating it from management, voice, or other types of network traffic.

Full entry →
Full Data VLAN glossary entry →

Term 112

Deauthentication attack

A deauthentication attack is a wireless network exploit where an attacker sends fake disconnection frames to force devices off a Wi-Fi network, often used to capture handshake data or disrupt connectivity.

Full entry →
Full Deauthentication attack glossary entry →

Term 113

Dedicated security mode

A configuration in IT systems where security services or appliances operate in an isolated, single-purpose environment to prevent interference with other functions and reduce attack surface.

Full entry →
Full Dedicated security mode glossary entry →

Term 114

Default gateway

A default gateway is a network device, typically a router, that acts as the exit point for traffic from a local network to other networks, including the internet.

Full entry →
Full Default gateway glossary entry →

Term 115

Default route

A default route is a catch-all routing entry that tells a network device where to send packets when no specific route matches the destination address.

Full entry →
Full Default route glossary entry →

Term 116

Default VLAN

The Default VLAN is VLAN 1 on most Cisco switches and it is the VLAN to which all switch ports belong by default until they are assigned to a different VLAN.

Full entry →
Full Default VLAN glossary entry →

Term 117

Defender policy

A Defender policy is a set of security rules configured in Microsoft 365 Defender that controls how endpoint detection and response (EDR), antivirus, firewall, and other protection features behave on managed devices.

Full entry →
Full Defender policy glossary entry →

Term 118

Defense in depth

Defense in depth is a cybersecurity strategy that uses multiple layers of security controls to protect information and systems, so if one layer fails, another layer is already in place to stop the attack.

Full entry →
Full Defense in depth glossary entry →

Term 119

Denial-of-service

A Denial-of-service (DoS) attack is an attempt to make a computer, network, or online service unavailable to its intended users by overwhelming it with fake traffic or requests.

Full entry →
Full Denial-of-service glossary entry →

Term 120

Deprovisioning

Deprovisioning is the process of removing a user's access to systems and data when they no longer need it, typically when they leave an organization or change roles.

Full entry →
Full Deprovisioning glossary entry →
← Part 3Part 5 →

Acronym parts

Part 1Part 2Part 3Part 4currentPart 5Part 6Part 7Part 8Part 9Part 10Part 11Part 12Part 13Part 14Part 15Part 16Part 17Part 18Part 19Part 20Part 21

Study resources

All SY0-701 Acronyms→SY0-701 Practice Tests→SY0-701 Study Guide→Exam Domains→