Data Protection Glossary

Security Operations Center (SOC)

Term: Security Operations Center (SOC) Definition: Security Operations Center (SOC) is the people, processes, and tools responsible for monitoring, …

Security Policy And Standards

Term: Security Policy and Standards Definition: Security Policy and Standards is documented requirements that define baseline security expectations, …

Software Bill of Materials (SBOM)

Term: Software Bill of Materials (SBOM) Definition: Software Bill of Materials (SBOM) is an inventory of software components and dependencies used to …

Static Application Security Testing (SAST)

Term: Static Application Security Testing (SAST) Definition: Static Application Security Testing (SAST) is automated analysis of source code to …

Supply Chain Security

Term: Supply Chain Security Definition: Supply Chain Security is controls that protect against risks introduced by vendors, dependencies, build …

Third-Party Risk Management (TPRM)

Term: Third-Party Risk Management (TPRM) Definition: Third-Party Risk Management (TPRM) is the process of assessing, contracting, and monitoring …

Threat Modeling

Term: Threat Modeling Definition: Threat Modeling is a structured method to identify threats, attack paths, and mitigations for a system before it is …

Tokenization

Term: Tokenization Definition: Tokenization is replacing sensitive values with non-sensitive tokens, storing the mapping in a secured vault to reduce …

Vulnerability Management

Term: Vulnerability Management Definition: Vulnerability Management is the lifecycle of discovering, prioritizing, remediating, and verifying security …

Zero Trust Architecture

Term: Zero Trust Architecture Definition: Zero Trust Architecture is a security approach that assumes no implicit trust based on network location and …