Terms and definitions from Course 1, Module 3 Flashcards
(17 cards)
What is an Asset?
An item perceived as having value to an organization
What does Availability refer to?
The idea that data is accessible to those who are authorized to access it
What is Compliance?
The process of adhering to internal standards and external regulations
What does Confidentiality mean?
The idea that only authorized users can access specific assets or data
What is the CIA triad?
A model that helps inform how organizations consider risk when setting up systems and security policies
Who is a Hacktivist?
A person who uses hacking to achieve a political goal
What is HIPAA?
A U.S. federal law established to protect patients’ health information
What does Integrity refer to in data?
The idea that the data is correct, authentic, and reliable
What is the NIST Cyber Security Framework (CSF)?
A voluntary framework that consists of standards, guidelines, and best practices to manage cybersecurity risk
What is Privacy protection?
The act of safeguarding personal information from unauthorized use
What is Protected health information (PHI)?
Information that relates to the past, present, or future physical or mental health or condition of an individual
What is Security architecture?
A type of security design composed of multiple components, such as tools and processes, that are used to protect an organization from risks and external threats
What are Security controls?
Safeguards designed to reduce specific security risks
What is Security ethics?
Guidelines for making appropriate decisions as a security professional
What are Security frameworks?
Guidelines used for building plans to help mitigate risk and threats to data and privacy
What is Security governance?
Practices that help support, define, and direct security efforts of an organization
What is Sensitive personally identifiable information (SPII)?
A specific type of PII that falls under stricter handling guidelines
