CCSP - All in one deck Flashcards
(85 cards)
Annualized loss expectancy (ALE)
The value derived by multiplying the single loss expectancy (SLE) by annualized rate of occurrence (ARO).
ALE = SLE & ARO
Annualized rate of occurrence
An estimated number of the times a threat will successfully exploit a given vulnerability over the course of a single year.
business continuity management
a process that is designed to identify risk, threats, and vulnerabilities, that could disrupt or impact services, with the intent on determining mitigating strategies and response process should they occur.
business impact analysis (BIA)
A structured methodology to identify and evaluate the possible risk and threats that operations or services could be impacted by
cloud application
An application that is never installed on a local server or desktop
Cloud Application Management for Platforms (CAMP)
Within a PaaS implementation CAMP serves as the frameworks and specification for managing services; the model for describing and documenting the components that comprise the platform; and the language for describing the overall platform and its components and services, as well as metadata about it.
cloud backup
the process of using a cloud-based back-up system with files and data being sent over the network to a public or private cloud provider for back-up.
cloud back-up service provider
A public or private cloud services organization that offers backup services to either the public or organization clients either on a free basis or using various costing models based on data or systems.
cloud back-up solutions
services that run within a public or private cloud offering backup solutions, either through client-based software that does automatic or scheduled backups or through manual backups initiated by a user system.
cloud computing
a model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computer resources that can be rapidly provisioned and released with minimal management effort or service provider interaction.
Cloud computing reseller
An organization that sells and offers cloud services and possible cloud support services to various organizations and works as middleman between the cloud customer and cloud provider.
Cloud Controls Matrix
A formally published guide by the Cloud Security Alliance that enables cloud customers to evaluate a prospective cloud provider in regard to its security posture. The CCM allows cloud providers to structure its security approach.
Cloud data portability
The ability to move data between cloud providers
Cloud database
a database that is installed in a cloud environment and accessed via the network to the Internet by a user or application. Because the database is being installed in a cloud environment elasticity, scalability and high availability can be achieved and maximized.
cloud enablement
The creation of a public cloud environment through the offering of services or infrastructure.
cloud management
the oversight and operations management of a cloud environment by the cloud service provider whether it is a public or private cloud environment.
cloud migration
the process of moving services, systems, applications, on dat from a traditionaldata center hosting model into a cloud environment.
Cloud OS
An operating system in a PaaS implementation and signify the implementation within a cloud environment.
Cloud provider
A service provider that makes makes storage or software applications available via the internet or provide networks to customers.
Cloud provisioning
the process of allocating cloud resources from the cloud provider to the cloud customers based on specific requests and requirements of the customer as far as the number of virtual machines and their specific computing resources.
Cloud Security Alliance
The most prominent and well-known organization to raise awareness of best practices for security within a cloud environment.
Cloud server hosting
The hosting and location of servers within a virtualized cloud environment, rather than the virtual or physical hosting that’s done in a traditional data center.
Cloud service broker
a partner that servers as an intermediary between a cloud service customer and a cloud service provider
Cloud testing
The testing of systems, services, or applications by leveraging cloud platforms and resources to simulate the size and scale of real-world traffic and users.