Flat Slovník
A glossary with shorter structure
A
Abuse report
A formal notification documenting malicious network activity sent to responsible parties for investigation and remediation.Acceptable risk
The level of potential loss or harm an organization is willing to tolerate after implementing security controls.Acceptable use
Organizational policies defining how technology resources may be appropriately accessed and used by employees and stakeholders.Acceptable use policy
A policy document defining how users may properly access and use an organization's IT systems and data.
B
Background checks
A verification process assessing individuals' suitability, trustworthiness, and reliability for roles involving access to sensitive information and systems.Benchmarking
A strategic process of comparing an organization's security posture against industry standards and peer organizations to identify gaps and improve cyber resilience.Bias
A cognitive predisposition that influences perception and decision-making, potentially compromising cybersecurity judgment and increasing vulnerability to threats.Blacklist
A security control mechanism that blocks known malicious entities such as IP addresses, domains, or files from accessing protected systems.Blind spot
An undetected vulnerability or unmonitored area within an organization's security infrastructure that adversaries can exploit.
C
Certificate authority
A trusted organization that issues and manages digital certificates to authenticate identities and enable secure encrypted communications.Code of conduct
A formal document outlining ethical principles and expected behaviors that guides employee conduct in protecting information and maintaining organizational integrity.Cognitive dissonance
The psychological discomfort experienced when holding conflicting beliefs, often causing people to rationalize risky security behaviors despite knowing the risks.Communication skills
The ability to effectively transmit and receive information verbally, in writing, and non-verbally to foster understanding and influence security behaviors.Cybersecurity awareness
The knowledge and practices individuals use to protect digital assets and recognize cyber threats, transforming human vulnerability into a strong security defense.
D
Dark web
An encrypted, anonymous network layer accessible via Tor, used for both legitimate privacy and illicit cybercriminal activities.Dashboard
A centralized visual interface that aggregates security data from multiple systems to provide real-time monitoring and threat analysis capabilities.Data breach
Unauthorized access or disclosure of sensitive information that compromises data confidentiality, integrity, or availability.Drills
Simulated cybersecurity exercises that test and improve an organization's incident response capabilities and security preparedness.Due diligence
A systematic cybersecurity investigation to identify, evaluate, and mitigate potential security risks before major transactions or strategic decisions.
E
Eligibility
The qualification or potential an entity has to receive specific access rights to resources or systems within an organization.Email etiquette
Professional standards and best practices for secure, respectful electronic communication that minimize cybersecurity risks and prevent human error vulnerabilities.Employee engagement
The emotional commitment and active involvement employees bring to an organization's security goals, forming the foundation of effective cybersecurity culture.Encapsulating security payload
An IPsec protocol that provides encryption, integrity, and authentication for IP communications, commonly used in VPNs.Exploit
A tool or technique that leverages system vulnerabilities to gain unauthorized access or cause harm.
F
Fair
FAIR (Factor Analysis of Information Risk) is a quantitative cybersecurity framework that measures and analyzes information risk in financial terms.Fear
An emotional response to perceived threats that influences cybersecurity behavior and is exploited in social engineering attacks.Federal trade commission
A U.S. government agency that protects consumers and enforces data security and privacy standards against unfair business practices.Fencing
A cybersecurity control that isolates and segments computing resources to create secure boundaries, preventing unauthorized access and containing potential threats.
G
Garbage collection
An automated memory management process that identifies and reclaims unused memory, preventing memory leaks and security vulnerabilities in software applications.Gateway
A network security control point that bridges and regulates traffic between trusted internal networks and untrusted external environments.Global catalog
A distributed data repository in Active Directory that enables fast cross-domain searches and authentication across an entire forest.Grooming
A social engineering technique where attackers gradually build false trust with victims to manipulate them into compromising security.Guideline
A structured set of recommended cybersecurity practices that provides flexible direction for organizations to manage risks and protect digital assets.
H
Hand-off
The formal transfer of responsibility and situational awareness for security incidents between analysts, teams, or operational phases.Hardening
A systematic security process that reduces attack surfaces by eliminating unnecessary functions, services, and vulnerabilities from systems and infrastructure.Hijacking
Unauthorized takeover of sessions, processes, or communications to gain illicit control over systems or user accounts.Honeypot
A deceptive cybersecurity tool designed to attract and trap cyber attackers, enabling organizations to analyze malicious activities and gather threat intelligence.Hunting
A proactive cybersecurity technique where analysts actively search for hidden threats that evade automated security defenses.
I
Identification
The process of uniquely asserting the identity of users, devices, or systems as the first step in access control and security management.Integrity
The assurance that data and systems remain accurate, complete, and protected from unauthorized modification throughout their lifecycle.Intellectual property
Legal rights protecting creations of the human intellect, including patents, trademarks, copyrights, and trade secrets, requiring robust cybersecurity and governance frameworks.Internet key exchange
A protocol that automates secure key exchange and authentication for IPsec VPNs and encrypted network communications.Ip address
A unique numerical label assigned to devices on a network that enables identification and data routing across the internet.
J
Jail
A security isolation technique that confines processes to restricted environments, limiting access to system resources and preventing unauthorized interactions with the host operating system.Jamming
A cyberattack that deliberately interferes with wireless signals to disrupt or block communications across Wi-Fi, cellular, GPS, and other wireless systems.Jargon
Specialized vocabulary used within professional fields that can create communication barriers when not translated for non-expert audiences.Jurisdiction
The legal authority determining which laws apply to digital data, cyber activities, and organizations across different regions and countries.Justification
The documented rationale explaining why specific access rights or elevated privileges are requested, essential for enforcing least privilege and maintaining audit trails in IAM.
K
Key
A cryptographic key is a piece of data used to encrypt, decrypt, or authenticate information in security systems.Key finding
A critical observation or discovery from security assessments that significantly impacts an organization's security posture and drives remediation efforts.Key fob
A compact hardware token used for authentication that generates one-time passcodes or uses proximity technology to verify user identity and enable secure access.Keychain
A secure encrypted storage system for managing passwords, cryptographic keys, and sensitive credentials within operating systems and applications.Kill switch
A security mechanism that instantly shuts down a system, application, or device during emergencies to contain threats and prevent damage.
L
Law enforcement
Governmental organizations that maintain public order, investigate crimes, and enforce laws, with expanding responsibilities in cybersecurity and cybercrime investigation.Logging
The systematic recording of events and activities across IT systems to create an audit trail for security monitoring, threat detection, and incident response.Logical fallacy
A flaw in argument construction that compromises validity, often exploited by attackers in social engineering and phishing campaigns.Login
The authentication process where users provide credentials to verify their identity and gain access to a digital system.Loss
The detrimental impact or negative consequence an organization experiences following a cybersecurity incident, including financial, reputational, operational, and data-related damages.
M
Malware protection
Technologies, processes, and policies designed to prevent, detect, and eliminate malicious software threats from organizational systems and networks.Masquerading
A cyberattack technique where attackers impersonate legitimate users, systems, or applications to bypass security controls and gain unauthorized access.Measures
Systematic actions, policies, and controls implemented to protect information assets and ensure compliance with security and privacy requirements.Mitigation
The systematic process of reducing the likelihood or impact of cyber threats through strategic controls and safeguards.Monitoring
The continuous observation and analysis of IT systems, networks, and user activities to detect security threats and anomalies.
N
Negligence
Failure to exercise reasonable care in protecting digital assets and information, creating exploitable vulnerabilities through inadequate security practices.Network address translation
A network routing function that translates private IP addresses to public addresses, enabling multiple internal devices to share a single public IP while hiding internal network topology from external threats.Non-disclosure agreement
A legally binding contract that protects sensitive information by establishing confidentiality obligations between parties, preventing unauthorized disclosure of proprietary data and trade secrets.Nonce
A cryptographic value used only once to prevent replay attacks and ensure the uniqueness of security operations.Normalization
The process of converting varied data inputs into a consistent, standardized format to strengthen security controls and prevent exploitation of inconsistencies.
O
Obfuscation
A security technique that transforms code into a form difficult to understand, protecting software from reverse engineering and unauthorized tampering.Ombudsman
An independent official who investigates complaints and resolves disputes between individuals and organizations, often addressing data privacy and compliance concerns in cybersecurity contexts.Organizational unit
A logical container in directory services for organizing users, groups, and resources to enable delegated administration and policy enforcement.Overflow
A security vulnerability where a program writes data beyond allocated memory boundaries, potentially enabling code injection or system compromise.Overwatch
Continuous strategic security monitoring that provides comprehensive surveillance over an organization's digital infrastructure to proactively detect threats.
P
Password
A confidential string of characters used to verify a user's identity and control access to digital systems and sensitive data.Password management
The practices, policies, and tools used to securely create, store, and handle authentication credentials throughout their lifecycle.Policy
A formal document establishing an organization's mandatory rules, principles, and strategic directives for protecting digital assets and guiding security decisions.Principal
An identifiable entity (user, service, or application) that can be authenticated and authorized to access resources in a system.Privilege
Authorization granted to users or systems to perform specific actions or access resources within an information system.
Q
Quality assurance
A systematic approach to ensuring software products meet security standards and functional requirements throughout development.Quarantine
A security mechanism that isolates suspicious or malicious files and applications to prevent threats from spreading or causing harm to systems.Questionnaire
A structured set of questions designed to assess an organization's security posture, practices, and controls for risk management purposes.Quiz
A structured assessment tool used to evaluate employee understanding of cybersecurity principles, policies, and threat recognition capabilities.Quorum
The minimum number of authorized individuals required to validate critical cybersecurity decisions and actions.
R
Registration
The initial process of establishing a verifiable digital identity within a system, serving as the gateway to secure access and resource management.Reminders
Administrative security controls that prompt individuals about critical security practices to counteract human forgetfulness and reinforce protective behaviors.Remote access trojan
Malicious software that gives attackers unauthorized remote control over infected computer systems, enabling surveillance, data theft, and complete system compromise.Resilience
An organization's ability to anticipate, withstand, adapt to, and recover from cyber incidents while maintaining operational integrity.Restoration
The systematic process of returning compromised systems and data to their pre-incident state following a cyberattack, ensuring full operational recovery and enhanced security.
S
Salt
A random string added to passwords before hashing to ensure unique outputs and prevent precomputed attacks.Sanctions
Coercive measures imposed by governments or international bodies against countries, entities, or individuals to influence behavior, deter illicit activities, or enforce international law.Sandbox
An isolated security environment where untrusted code can be safely executed and analyzed without risking the host system.Scope
The defined boundaries and extent of access permissions an identity holds over organizational resources, systems, and data.Sign-in
The authentication process where users verify their identity to access systems, applications, or online services securely.
T
Tap
A Test Access Point (Tap) is a passive hardware device that intercepts and copies network traffic for security monitoring and analysis without affecting network performance.Target application
A specific software program or system designated as the focal point for security assessments and vulnerability analysis.Technical documentation
Comprehensive written materials detailing system architecture, security configurations, and operational procedures essential for cybersecurity governance and compliance.Ticket
A cryptographically verifiable digital artifact that provides temporary proof of authentication and authorization for accessing network resources.Transparency
The practice of being open and clear about security measures, data handling, and operational processes to build trust and ensure accountability.
U
Uncertainty
A state of incomplete knowledge about cyber events, their outcomes, or likelihood that complicates security planning and risk assessment.Unified threat management
A consolidated cybersecurity platform that integrates multiple security functions like firewalls, antivirus, and intrusion prevention into a single solution for comprehensive network protection.Uninterruptible power supply
A device that provides emergency battery backup and power conditioning to protect IT equipment from outages, surges, and voltage fluctuations.Uplink
A communication link connecting local network devices to higher-level network components, enabling upstream data transmission to WANs or the internet.Url encoding
A method for converting special characters in URLs into a safe, transmittable format using percent signs and hexadecimal values.
V
Verification
A security control process that confirms systems and applications meet predefined security requirements and function as intended.Version control
A system that tracks and manages changes to source code and digital assets, providing audit trails and security controls essential for software integrity.Virtual private network
A secure, encrypted connection technology that protects internet traffic and masks user identity when accessing networks.Vpn
A secure encrypted tunnel technology that protects internet traffic and masks user identity over public networks.Vulnerability
A weakness or flaw in systems, applications, or processes that can be exploited by threat actors to gain unauthorized access or cause harm.
W
War room
A dedicated physical or virtual environment for centralized command and coordination during high-severity cybersecurity incidents.Warrant
A formal legal authorization from a judicial authority permitting law enforcement to access digital data, devices, or communications for cybercrime investigations.Whistleblowing
The disclosure of confidential information about illicit or unethical activities within an organization, often involving cybersecurity vulnerabilities or data breaches.Wired equivalent privacy
An obsolete wireless security protocol that used RC4 encryption to protect Wi-Fi networks, now deprecated due to critical cryptographic vulnerabilities.Worm
A self-replicating malware that spreads autonomously across networks by exploiting vulnerabilities, without requiring human intervention or host files.
X
X-Forwarded-For
An HTTP header that identifies the original client IP address when traffic passes through proxies or load balancers.X.509
An ITU-T standard defining the format of public key certificates used in PKI for identity verification and secure communications.XDR
XDR (eXtended Detection and Response) is a unified cybersecurity platform that collects and correlates security data across endpoints, networks, cloud, and email to detect and respond to complex threats.Xml
A markup language for structuring and transporting data in a human and machine-readable format, widely used in identity protocols like SAML.Xss
A web security vulnerability allowing attackers to inject malicious scripts into web pages, potentially stealing user data and hijacking sessions.
Y
Yaml
A human-readable data serialization format used for configuration files and infrastructure definitions in cloud environments.Yaml linting
Automated validation process that inspects YAML configuration files for syntax errors, structural issues, and security policy violations.Yara
An open-source pattern-matching tool used by security researchers to identify and classify malware through custom rules.Yara rules
A pattern-matching language used to identify and classify malware by defining specific textual or binary signatures for threat detection.Your rights
Legal entitlements individuals hold over their personal data, including access, correction, deletion, and control over how organizations process their information.
Z