Lesson 14 - Security Governance Concepts Flashcards
AUP
Acceptable Use Policy
- a policy that governs employees’ use of company equipment and Internet services. ISPs may also apply AUPs to their customers
COOP
Continuity of Operations Plans
- a strategy to ensure that essential functions continue during disruptions or emergencies, including cyberattacks.
SDLC
Software Development Life Cycle
- the processes of planning, analysis, design, implementation, and maintenance that often govern software and systems development
IAM
Identity and Access Management
CDE
Cardholder Data Environment
ISMS
Information Security Management System
- a framework that helps organizations systematically manage and protect their information assets, focusing on confidentiality, integrity, and availability
FISMA
Federal Information Security Management Act
CCPA
California Consumer Privacy Act
CMMC
Cybersecurity Maturity Model Certification
RFC
Request for Change