1
Q
IPS
A
Intrusion Prevention System
2
Q
RPO
A
Recovery Point Objective
3
Q
RTO
A
Recovery Time Objective
4
Q
DNS
A
Domain Name System
5
Q
XSS
A
Cross-state Scripting
6
Q
CRSS
A
Cross-site Scripting
7
Q
XSRF
A
Cross-site Request Forgery
8
Q
VLAN
A
Virtual LAN
9
Q
VDI
A
Virtual Desktop Infrastructure
10
Q
SaaS
A
Software as a Service
11
Q
PaaS
A
Platform as a service
12
Q
FaaS
A
Function as a Service
13
Q
IaC
A
Infrastructure as Code
14
Q
CASB
A
Cloud Access Security Broker
15
Q
AUP
A
Accessible Use Policy
16
Q
NGFW
A
Next Gen Fire Wall
17
Q
EDR
A
Endpoint Detection and Response
18
Q
TOTP
A
Time-based One-time Password
19
Q
2FA
A
Two-factor Authentication
20
Q
FRR
A
False Rejection Rate
21
Q
FAR
A
False Acceptance Rate
22
Q
SDLC
A
Software Development Life Cycle
23
Q
MDM
A
Mobile Device Management
24
Q
HIDS
A
Host Intrusion Detection System
25
NIPS
Net Intrusion Prevention System
26
HSM
Hardware Security Management -or- Hardware Security Modules
27
WAF
Web Access Firewall
28
NAC
Net Access Control
29
NIDS
Net Intrusion Detection System
30
SSO
Single Sign-on
31
SOAR
Secure Orchestration, Automation, and Response
32
SDN
Software Defined Network
33
NDA
Non-Disclosure Agreement
34
BGP
Border Gateway Protocol
35
DNSSEC
Domain Name System Security Extension
36
SSH
Secure Shell
37
HTTP(S)
Hyper Text Transfer Protocol (over SSL/TLS)
38
MitM
Man in the Middle (on-path)
39
VPN
Virtual Private Network
40
CSP
Cloud Service Provider
41
T US IC
The United States Intelligence Community
42
C2
Command and Control
43
AWS
Amazon Web Service
44
CCO
Chief Compliance Officer
45
CEO
Chief Executive Officer
46
HSM
Hardware Security Module
47
UTM
Unified Threat Management
48
OSPF
Open Shortest Path First
49
EIGRP
Enhanced Interior Gateway Routing Protocol
50
TLS
Transport Layer Security
51
MitB (MiB)
Man in the Browser (Trojan)
52
MAC
Media Access Control
53
DDoS
Distributed Denial-of-Service (Attack)
54
ISP
Internet Service Provider
55
UDP
User Datagram Protocol
56
ICMP
Internet Control Message Protocol
57
API
Application Programming Interface
58
JSON
JavaScript Object Notation
59
YAML
Yet Another Markup Language
60
SWG
Secure Web Gateway
61
VPC
Virtual Private Cloud
62
SDN
Software Defined Network
63
SDV
Software Defined Visibility
64
CBT
Computer Based Training
65
CIA/DAD
Confidentiality, Integrity, Availability / Disclosure, Alteration, Denial
66
HIPPA
Health Insurance Portability and Accountability Act
67
PCI DSS
Payment Card Industry Data Security Standard
68
IOCTA/EUROPOL
Internet Organized Crime Threat Assessment / European Union Agency for Law Enforcement Cooperation
69
APT
Advanced Persistent Threat
70
OSINT
Open Source Intelligence
71
CISA
Cybersecurity and Infrastructure Security Agency
72
TTP
Tactics, Techniques, and Procedures
73
RAT
Remote Access Trojan
74
MBR
Master Boot Record
75
DRM
Digital Rights Management
76
IRC
Internet Relay Chat
77
OWASP
Open Web Application Security Project
78
PUP
Potentially Unwanted Program
79
VBA
Visual Basic for Applications
80
AI/ML
Artificial Intelligence / Machine Learning
81
CFO
Chief Financial Officer
82
SPIM
Spam over Instant Message
83
ISACs
Information Sharing and Analysis Centers
84
TAXII
Trusted Automated eXchange of Indicator Information Protocol
85
IoC
Indicators of Compromise
86
MSSP
Managed Security Service Provider
87
PII
Personal Identifiable Information
88
VoIP
Voice over IP
89
SIEM
Security Information and Event Management
90
MTTR
Mean Time to Recovery -or- Mean Time to Restore
91
NFC
Near-field Communications
92
TPM
Trusted Platform Module
93
FTP
File Transfer Protocol
94
SMTP
Simple Mail Transfer Protocol
95
DHCP
Dynamic Host Configuration Protocol
96
TFTP
Trivial File Transfer Protocol
97
POP3
Post Office Protocol
98
NNTP
Network News Transport Protocol
99
NTP
Network Time Protocol
100
IMAP4
Internet Messaging Access Protocol
101
SNMP
Simple Network Management Protocol
102
UEM
Unified Endpoint Management
103
CVE
Common Vulnerabilities and Exposures
104
RoE
Rules of Engagement
105
PR
Privileges Required
| Not to be confused with Public Relations
106
NIST
National Institute of Standards and Technology
107
LAN
Local Area Network
108
ARP
Address Resolution Protocol
109
DOM-based XSS
Document Object Model-based Cross-site Scripting
110
SSI
Self-sovereign identity
111
FIM
File Integrity Monitoring
112
AES
Advanced Encryption Standard
113
OCSP
Online Certificate Status Protocol
114
EV
Extended Validation
115
CA
Certificate Authorities
116
SAE
Simultaneous Authentication of Equals
117
PFX
Personal Exchange Format
118
IdP
Identity Provider
119
RADIUS
Remote Authentication Dial-In User Service
120
SMS
Short Message Service
121
RBAC
Role-Based Access Control
122
CER
Cross-over Error Rate
123
DAC
Discretionary Access Control
124
EMI
Electro Magnetic Interference
125
RFID
Radio Frequency Identification
126
GDPR
General Data Protection Regulation
127
DPO
Data Protection Officer
128
PHI
Protected Health Information
129
IDS
Intrusion Detection System
130
MSA
Master Service Agreement
131
CIS
Center for Internet Security
132
USB OTG
USB On-the-Go
133
FDE
Full Device Encryption
134
PSK
Pre-shared Key
135
COPE
Corporate-Owned, Personally-Enabled
136
SoC
System on a Chip
137
SCADA
Supervisory Control and Data Acquisition
138
RTOS
Real-Time Operating System
Security+
flashcards
Decks in class (19)
# Cards
-
Acronyms138
-
1 - Today's Security Professional20
-
2 - Cybersecurity Threat Landscape20
-
3 - Malicious Code20
-
4 - Social Engineering, Physical, and Password Attacks20
-
5 - Security Assessment and Testing20
-
6 - Secure Coding20
-
7 - Cryptography and the Public Key Infrastructure15
-
8 - Identity and Access Management20
-
9 - Resilience and Physical Security20
-
10 - Cloud and Virtualization Security20
-
11 - Endpoint Security19
-
12 - Network Security19
-
13 - Wireless and Mobile Security20
-
14 - Incident Response20
-
15 - Digital Forensics19
-
16 - Security Policies, Standards, and Compliance18
-
17 - Risk Management and Privacy11
-
Practice Test28
