Business Continuity

Planning and processes that ensure critical business functions continue during and after a cybersecurity incident or disaster.

CMMC

Cybersecurity Maturity Model Certification — the DoD framework requiring defense contractors to demonstrate cybersecurity practices at specified levels.

Compliance

Adherence to regulatory requirements, industry standards, and security frameworks that govern how organizations protect data.

Disaster Recovery

Plans and procedures for restoring IT infrastructure and operations after a catastrophic event such as a cyberattack or natural disaster.

Encryption

The process of converting data into an unreadable format using cryptographic algorithms, protecting it from unauthorized access.

Endpoint Detection and Response (EDR)

Security solution that continuously monitors endpoints to detect, investigate, and respond to cyber threats in real time.

Firewall

Network security device that monitors and filters incoming and outgoing traffic based on predefined security rules.

HIPAA

Health Insurance Portability and Accountability Act — federal law requiring healthcare organizations to protect patient health information.

Incident Response

The organized approach to detecting, containing, eradicating, and recovering from cybersecurity incidents.

Intrusion Detection System (IDS)

Security system that monitors network traffic for suspicious activity and known threat signatures, alerting administrators to potential attacks.

Managed Detection and Response (MDR)

Outsourced cybersecurity service providing 24/7 threat monitoring, detection, and active response by a team of security experts.

Multi-Factor Authentication (MFA)

Security method requiring two or more verification factors to access accounts, significantly reducing the risk of credential-based attacks.

PCI-DSS

Payment Card Industry Data Security Standard — security requirements for organizations that store, process, or transmit cardholder data.

Penetration Testing

Authorized simulated cyberattacks performed to evaluate the security of systems by attempting to exploit vulnerabilities.

Phishing

Fraudulent communications disguised as legitimate sources to trick victims into revealing credentials, installing malware, or transferring funds.

Ransomware

Malicious software that encrypts files and demands payment for the decryption key, often causing catastrophic business disruption.

Risk Assessment

Systematic process of identifying threats, vulnerabilities, and potential impacts to determine the level of risk to an organization.

Security Awareness Training

Educational programs that teach employees to recognize and respond to cybersecurity threats like phishing and social engineering.

Security Information and Event Management (SIEM)

Platform that collects, correlates, and analyzes security log data from across an organization to detect threats and support compliance.

Security Operations Center (SOC)

Centralized facility where a team of security analysts monitors, detects, and responds to cybersecurity threats around the clock.

SOC 2

Service Organization Control 2 — an auditing framework that evaluates how service providers manage data security, availability, and privacy.

Social Engineering

Psychological manipulation techniques used to trick people into revealing information or performing actions that compromise security.

Virtual CISO

An outsourced Chief Information Security Officer who provides strategic security leadership without the cost of a full-time executive hire.

Vulnerability Assessment

Systematic review of security weaknesses in systems, networks, and applications to identify and prioritize risks for remediation.

Zero Trust Architecture

Security framework that eliminates implicit trust, requiring verification for every user and device before granting access to resources.

Cybersecurity Glossary