Definitions and pro-tips for the CC certification.
The ability to trace actions performed on a system back to a specific individual or process, typically through audit logs.
Security controls that focus on personnel and business practices, such as policies, procedures, and security awareness training.
Anything of value to an organization that must be protected, including hardware, software, data, and personnel.
Also known as public-key cryptography, it uses a pair of related keys: a public key for encryption and a private key for decryption.
The process of verifying the identity claimed by a user or system, often using passwords, tokens, or biometrics.
The process of determining what an authenticated user is permitted to do or access within a system.
The security principle that ensures systems, applications, and data are accessible to authorized users when they are needed.
The use of unique physical or behavioral characteristics to verify identity, such as fingerprints, facial recognition, or iris scans.
A strategy for maintaining essential business operations during and after a significant disruption or disaster.
The foundational model for information security consisting of Confidentiality, Integrity, and Availability. It serves as a guide for policies and security controls within an organization.
A disaster recovery facility that provides space, power, and cooling but has no pre-installed IT equipment or data.
The security principle that ensures information is accessible only to those authorized to have access. It prevents unauthorized disclosure of sensitive data.
The process of organizing data into categories based on its sensitivity and the impact if it were disclosed or lost.
A security strategy that uses multiple layers of security controls (physical, technical, and administrative) to protect an asset.
A backup that includes all data that has changed since the last full backup.
A subset of the BCP that focuses specifically on the technical procedures required to restore IT infrastructure and data after a disaster.
A physical or logical subnetwork that contains and exposes an organization's external-facing services to an untrusted network, usually the internet.
The process of converting information or data into a code, especially to prevent unauthorized access.
A network security device that monitors and filters incoming and outgoing network traffic based on an organization's previously established security policies.
A complete copy of all selected data, regardless of whether it has changed since the last backup.
A fully equipped and operational disaster recovery facility that can take over business operations almost immediately.
The process by which a user or system claims an identity, typically by providing a username or ID number.
A security system that monitors network or system activities for malicious activities or policy violations and produces alerts.
The formal process for handling security incidents, typically including Preparation, Detection, Containment, Eradication, Recovery, and Lessons Learned.
A backup that only includes data that has changed since the last backup of any kind (full or incremental).
The security principle that ensures information is accurate, complete, and has not been modified by unauthorized users or processes.
An active security system that monitors network traffic and takes automated actions to block or prevent detected threats.
The practice of limiting user access rights to only the bare minimum permissions necessary to perform their specific job functions.
Short for 'malicious software,' it is a broad term for any software intentionally designed to cause damage to a computer, server, or network.
A security mechanism that requires two or more different types of evidence (factors) to verify a user's identity.
A conceptual framework that characterizes and standardizes the communication functions of a telecommunication or computing system into seven layers.
Any data that could potentially identify a specific individual, such as a name, SSN, or email address.
A type of social engineering where an attacker sends a fraudulent message designed to trick a person into revealing sensitive information.
Security controls that protect the physical environment, such as fences, locks, badges, and security guards.
A type of malware that encrypts a victim's files, with the attacker demanding a payment to restore access.
The maximum tolerable amount of data loss, measured in time, that an organization can sustain after a disruption.
The maximum tolerable length of time that a system, application, or function can be down after a failure or disaster.
The process of identifying, analyzing, and evaluating risks to determine their likelihood and potential impact on an organization.
An access control model where permissions are assigned to specific job roles rather than individual users.
The framework of rules, practices, and processes by which an organization ensures that its security activities align with business objectives.
A security control that divides a sensitive task into multiple steps performed by different individuals to prevent fraud or error.
A session and user authentication service that allows a user to use one set of login credentials to access multiple applications.
The psychological manipulation of people into performing actions or divulging confidential information.
A type of encryption where the same key is used for both encrypting and decrypting the data.
Security controls implemented through hardware or software technology, such as firewalls, encryption, and intrusion detection systems.
Any potential event or person that could exploit a vulnerability to cause damage to an asset.
A technology that creates a safe and encrypted connection over a less secure network, such as the internet.
A weakness in an asset or control that could be exploited by a threat to cause harm.
A disaster recovery facility that is partially equipped with hardware and network connectivity but requires data restoration to become operational.
A security model that requires continuous verification of every user and device, regardless of whether they are inside or outside the network perimeter.
We're adding new exams every week. Let us know what you're studying for, and we'll bump it up our priority list! (Typical turnaround: 2-3 days)
Your feedback has been submitted successfully. We appreciate your help in making Cert Sensei better!