Created by Matthew Campese
over 4 years ago
|
||
Question | Answer |
CMS | Content Management System Web based app that supports collaboration between multiple content contributors |
ERP | Enterprise Resource Planning Software that helps manage departments like HR payroll enterprise wide |
CRM | CUSTOMER RELATIONSHIP MANAGEMENT FACILITATES INTERACTIONS WITH CUSTOMER SERVICE AND TECH SUPPORT |
MSSP | MANAGED SERVICE SECURITY PROVIDER ORGANIZATIONS THAT PROVIDE SECURITY OUTSOURCING SOLUTIONS |
HIPPA | STANDARDS THAT HELP MANAGE HEALTH INFORMATION |
GLBA GRAMM-LEACH-BLILEY ACY | GOVERNS FINANCIAL ORGANIZATIONS AND PROTECTS CONSUMERS PII |
SOX SARBANES OXLEY ACT | APPLIES TO PUBLICLY OWNED ORGANIZATIONS CONDUCTS FRAUD ASSESSMENT |
FISMA | SETS SECURITY STANDARDS FOR GOVT AGENCIES AND SYSTEMS |
PCI DSS | REGULATIONS FOR CREDIT CARDS AND TRANSACTIONS |
GDPR | PERSONAL DATA IN THE EU IS PROTECTED |
COBIT | CONTROL OBJECTIVES OF INFORMATION RELATED TECHNOLOGIES BEST PRACTICES FOR IT MANAGEMENT |
COPE | COMPANY OWNED PERSONALLY ENABLED COMPANY BUYS THE PHONE USED FOR BUSINESS AND PERSONAL USE |
CYOD | CHOOSE YOUR OWN DEVICE YOU CAN PICK A DEVICE ON THE COMPANY'S LIST |
LINUX COMMAND SU | SWITCH USER SWITCHES USER TO ROOT ACCOUNT |
LINUX COMMAND SUDO | ALLOWS USER TO RU COMMANDS W/O PUTTING IN CREDENTIALS |
ORGANIZATION POLICIES | UMBRELLA POLICY THAT INCORPORATES THE ENTIRE BUSINESS AS A WHOLE |
SYSTEM SPECIFIC POLICIES | FOCUSES ON SPECIFIC COMPUTER OR NETWORK SYSTEM OR OS AND THE SECURITY CONTROLS THAT PROTECT THEM |
ISSUE SPECIFIC POLICIES | POLICIES THAT FOCUS ON A SINGLE BUSINESS ISSUE OR DEPARTMENT. IE BUSINESS PRODUCTS AND PROCESSES |
REGULATORY POLICIES | POLICIES THAT FOLLOW LEGAL REQUIREMENTS IN COMPLIANCE WITH THE LAW |
ADVISORY POLICY | PROVIDE STRONG RECOMMENDATION TO THE BEHAVIOR OF EMPLOYEES |
INFORMATIVE POLICY | REMINDERS OR THINGS WE HOPE EMPLOYEES CONSIDER |
DAC | DISCRETIONARY ACCESS CONTROL OWNER GIVES PERMISSION AT HIS DESCRETION |
R | ROLE BASED |
MAC | MANDATORY ACCESS CONTROL NEED SOMETHING TO GET ACCESS. IE CLEARANCE TO SEE SECRET FILES |
RULE BASED ACCESS CONTROL | RULES THAT APPLY TO ALL NOT JUST 1 USER. IE ROUTER OR SWITCH RULE |
CLEAN DESK POLICY | KEEP SENSITIVE MATERIAL OFF YOUR DESK AND AWAY FROM PRYING EYES |
REMOTE ACCESS POLICY | MANDATES HOW TO REMOTELY CONNECT SECURELY |
STANDARDS | ACCEPTED SPECS THAT PROVIDE SPECIFIC DETAILS ON AN OBJECTIVE |
PROCESS | SERIES OF STEPS NEEDED TO ACHIEVE AN OBJECTIVE |
PROCEDURES | STEP BY STEP DETAILS ON HOW TO ACHIEVE A PROCESS |
RISK ASSESSMENT | PROCESS OF DETERMINING THE PRIORITIZATION OF A RESPONSE TO THREATS |
BIA | BUSINESS IMPACT ANALYSIS DOCUMENTS RISK AND THE IMPACT IF IT SHOULD HAPPEN MUST RECOVER CRITICAL SERVICES WITHIN EXPECTED TIME LINES |
IA | INTEROPERABILITY AGREEMENT AGREEMENTS THAT INCLUDE DATA, TECH, SHARING REQUIREMENTS ISA SLA MOU BPA |
ISA | INTERCONNECTION SECURITY AGREEMENT AGREEMENT BETWEEN 2 ORGANIZATIONS THAT HAVE CONNECTED IT SYSTEMS. DOCUMENTS SECURITY REQUIREMENTS |
MOU | MEMORANDUM OF UNDERSTANDING AGREEMENT THAT EXPRESSES INTENDED ACTIONS BETWEEN 2 PARTIES NOT BINDING MIGHT HAVE COMMON GOALS |
BPA | BUSINESS PARTNERSHIP AGREEMENT ESTABLISHES TERMS, CONDITIONS, AND EXPECTANCY OF THE RELATIONSHIP |
OLA | OPERATING LEVEL AGREEMENT INTERNAL DOCUMENT USUALLY BETWEEN 2 DEPARTMENTS TO SUPPORT ONE ANOTHER |
MSA | MASTER SERVICE AGREEMENT BUILDING BLOCK FOR FUTURE AGREEMENTS |
RFP | REQUEST FOR PROPOSAL INFORMS VENDOR OF PRODUCT BEING SOUGHT WHAT SPECS THE ORGANIZATION WISHES TO BUY |
RFQ | REQUEST FOR QUOTE ASKS PRICE RANGE FOR SERVICES |
RFI | REQUEST FOR INFORMATION USED TO GATHER INFORMATION ON PRODUCT BEING SOUGHT |
(SLE) SINGLE LOSS EXPECTANCY | ASSET VALUE X EXPOSURE FACTOR |
ALE ANNUALIZED LOSS EXPECTANCY | SLE X ARO |
RPN | RISK PRIORITY NUMBER SEVERITY X OCCURRENCE X DETECTION |
ROI | BENEFIT - COST /COST |
DECISION MAKING AUTHORITY | BCP TEAM MADE UP OF BIG WIGS |
EMERGENCY RESPONSE TEAM | IMMEDIATE COMMUNICATION PLAN. WHO WILL TAKE OVER IN DISASTERS |
RTO | RECOVERY TIME OBJECTIVE PROFFERED TIME BUSINESS SHOULD BE RESTORED TO NORMAL FUNCTIONS |
RPO | RECOVERY POINT OBJECTIVE THE MAX TIME AN ORGANIZATION CAN TOLERATE A DATA LOSS |
MTTR | MEAN TIME TO REPAIR HOW LONG TIL SOMETHING CAN BE RESTORED TO NORMAL |
MTBF | MEAN TIME BEFORE FAILURE HOW LONG A DEVICE WILL LAST BEFORE FAILURE. LIFE SPAN |
MTD | MAX TOLERABLE DOWN TIME MAX TIME A FUNCTION CAN BE UNAVAILABLE B4 IRRECOVERABLE BUSINESS FAILURE |
KPI | KEY PERFORMANCE INDICATORS EVALUATES THE SUCCESS OF TECH GOALS AND PROCESSES |
KRI | MEASURES RISK AN ACTIVITY BRINGS |
Want to create your own Flashcards for free with GoConqr? Learn more.