Term 91
Compliance Manager
A Compliance Manager is a tool or service that helps organizations assess, monitor, and improve their adherence to regulatory standards, industry frameworks, and internal policies.
Acronym study
Terms 91–120 of 610 SY0-701 acronyms and key terms. Each entry includes a plain-English definition and a link to the full 800-word glossary page with exam context and practice questions.
Term 91
A Compliance Manager is a tool or service that helps organizations assess, monitor, and improve their adherence to regulatory standards, industry frameworks, and internal policies.
Term 92
A compliance policy is a set of rules that ensures devices, users, and applications meet an organization's security and regulatory requirements before they can access corporate resources.
Term 93
A compliance scan is an automated security assessment that checks systems, networks, and applications against a defined set of regulatory or organizational standards to verify adherence to required policies.
Term 94
Compliance state is the current status of a system, application, or device indicating whether it meets a defined set of security policies, regulatory requirements, or configuration standards.
Term 95
Conditional access is a security framework that evaluates signals like user location, device health, and risk level to grant or block access to resources in real time.
Term 96
Conditional Access integration is a security framework that evaluates signals such as user identity, location, device state, and application sensitivity to grant or block access to resources before a session is established.
Term 97
A Conditional Access policy is a set of rules in Microsoft Entra ID that automatically grants or blocks access to cloud apps based on signals like user identity, location, device health, and risk level.
Term 98
Confidentiality means keeping sensitive information secret and accessible only to authorized people or systems.
Term 99
The CIA Triad is a foundational security model that ensures data is kept secret, unaltered, and accessible when needed.
Term 100
A configuration baseline is a fixed reference point that documents the approved hardware, software, settings, and performance parameters of an IT system or network component at a specific point in time.
Term 101
A connected route is a network path that a router knows about automatically because it has a network interface directly connected to that network.
Term 102
Container security is the practice of protecting containerized applications and their underlying infrastructure from threats throughout the entire lifecycle.
Term 103
Credential stuffing is a cyberattack where attackers use lists of stolen usernames and passwords to gain unauthorized access to user accounts on different websites.
Term 104
A Certificate Revocation List (CRL) is a published list of digital certificates that have been revoked by a Certificate Authority before their scheduled expiration date.
Term 105
Cross-site scripting (XSS) is a security vulnerability that allows attackers to inject malicious scripts into web pages viewed by other users, often to steal data or hijack sessions.
Term 106
A Certificate Signing Request is a block of encoded data sent to a Certificate Authority to apply for a digital certificate.
Term 107
Discretionary Access Control is a security model where the owner of a resource decides who can access it and what permissions they have.
Term 108
Data classification is the process of organizing data into categories based on its sensitivity, value, and criticality to an organization, so that appropriate security controls can be applied.
Term 109
Data Loss Prevention (DLP) is a set of tools and processes that help organizations stop sensitive information from being shared, leaked, or stolen, whether accidentally or on purpose.
Term 110
Data security is the practice of protecting digital information from unauthorized access, corruption, or theft throughout its lifecycle.
Term 111
A Data VLAN is a virtual local area network configured on a switch to carry user-generated traffic, separating it from management, voice, or other types of network traffic.
Term 112
A deauthentication attack is a wireless network exploit where an attacker sends fake disconnection frames to force devices off a Wi-Fi network, often used to capture handshake data or disrupt connectivity.
Term 113
A configuration in IT systems where security services or appliances operate in an isolated, single-purpose environment to prevent interference with other functions and reduce attack surface.
Term 114
A default gateway is a network device, typically a router, that acts as the exit point for traffic from a local network to other networks, including the internet.
Term 115
A default route is a catch-all routing entry that tells a network device where to send packets when no specific route matches the destination address.
Term 116
The Default VLAN is VLAN 1 on most Cisco switches and it is the VLAN to which all switch ports belong by default until they are assigned to a different VLAN.
Term 117
A Defender policy is a set of security rules configured in Microsoft 365 Defender that controls how endpoint detection and response (EDR), antivirus, firewall, and other protection features behave on managed devices.
Term 118
Defense in depth is a cybersecurity strategy that uses multiple layers of security controls to protect information and systems, so if one layer fails, another layer is already in place to stop the attack.
Term 119
A Denial-of-service (DoS) attack is an attempt to make a computer, network, or online service unavailable to its intended users by overwhelming it with fake traffic or requests.
Term 120
Deprovisioning is the process of removing a user's access to systems and data when they no longer need it, typically when they leave an organization or change roles.