Trust Operations
Answer Library
Security glossary terms and narrative operating answers in one archive.
Core Acronyms
- BAA
Definition and response guidance for BAA.
- BCP / DR
Definition and response guidance for BCP / DR.
- CWE / CVE / CVSS
Definition and response guidance for CWE / CVE / CVSS.
- DLP
Definition and response guidance for DLP.
- DPA
Definition and response guidance for DPA.
- DPIA
Definition and response guidance for DPIA.
- DPO
Definition and response guidance for DPO.
- EDR / MDM
Definition and response guidance for EDR / MDM.
- IdP
Definition and response guidance for IdP.
- IR
Definition and response guidance for IR.
- ISO 27001
Definition and response guidance for ISO 27001.
- KMS
Definition and response guidance for KMS.
- MFA
Definition and response guidance for MFA.
- PHI
Definition and response guidance for PHI.
- PII
Definition and response guidance for PII.
- PoLP
Definition and response guidance for PoLP.
- RBAC
Definition and response guidance for RBAC.
- ROPA
Definition and response guidance for ROPA.
- RoR / Break-glass
Definition and response guidance for RoR / Break-glass.
- RTO / RPO
Definition and response guidance for RTO / RPO.
- SAML / OIDC
Definition and response guidance for SAML / OIDC.
- SCCs
Definition and response guidance for SCCs.
- SIEM
Definition and response guidance for SIEM.
- SLA / SLO / SLI
Definition and response guidance for SLA / SLO / SLI.
- SOC 2
Definition and response guidance for SOC 2.
- SSO
Definition and response guidance for SSO.
- TLS
Definition and response guidance for TLS.
Core Concepts
- Backups
Definition and response guidance for Backups.
- Change Management
Definition and response guidance for Change Management.
- Controller vs Processor
Definition and response guidance for Controller vs Processor.
- Data Residency
Definition and response guidance for Data Residency.
- Data Subject Rights
Definition and response guidance for Data Subject Rights.
- Deletion
Definition and response guidance for Deletion.
- Secure SDLC
Definition and response guidance for Secure SDLC.
- Subprocessors
Definition and response guidance for Subprocessors.
- Vulnerability Management
Definition and response guidance for Vulnerability Management.
Mini Glossary
- Access Review
Definition and response guidance for Access Review.
- Anonymization
Definition and response guidance for Anonymization.
- Audit Log
Definition and response guidance for Audit Log.
- Backup Purge
Definition and response guidance for Backup Purge.
- CIS Benchmarks
Definition and response guidance for CIS Benchmarks.
- Data Minimization
Definition and response guidance for Data Minimization.
- DLP
Definition and response guidance for DLP.
- GRC
Definition and response guidance for GRC.
- Pentest
Definition and response guidance for Pentest.
- Policy vs Procedure
Definition and response guidance for Policy vs Procedure.
- Secrets Mgmt
Definition and response guidance for Secrets Mgmt.
- SOP
Definition and response guidance for SOP.
Platforms & Portals
- Ariba / Coupa
Definition and response guidance for Ariba / Coupa.
- Drata / Vanta / Secureframe
Definition and response guidance for Drata / Vanta / Secureframe.
- GitLeaks / TruffleHog
Definition and response guidance for GitLeaks / TruffleHog.
- OneTrust
Definition and response guidance for OneTrust.
- Snyk / Dependabot / Trivy
Definition and response guidance for Snyk / Dependabot / Trivy.
- Whistic
Definition and response guidance for Whistic.