200 Foundational Cybersecurity Terms

By /

A concise list of 200 foundational cybersecurity terms, grouped by category for clarity. These are essential for professionals, especially those targeting roles like Head of Platform Security or Fintech Security Architecture.

1. Core Concepts

  1. Confidentiality – Ensuring data is accessible only to authorized users.
  2. Integrity – Maintaining data accuracy and trustworthiness.
  3. Availability – Ensuring systems and data are accessible when needed.
  4. Authentication – Verifying user or system identity.
  5. Authorization – Granting permissions based on identity/role.
  6. Non-repudiation – Preventing denial of actions (e.g., via digital signatures).
  7. Threat – Potential danger that could exploit a vulnerability.
  8. Vulnerability – Weakness that can be exploited.
  9. Risk – Likelihood × impact of a threat exploiting a vulnerability.
  10. Attack Surface – All points where an attacker can interact with a system.

2. Identity & Access Management (IAM) / PAM

  1. IAM – Framework for managing digital identities and access.
  2. PAM (Privileged Access Management) – Controls access for privileged accounts.
  3. SSO (Single Sign-On) – One login for multiple systems.
  4. MFA (Multi-Factor Authentication) – Requires ≥2 verification factors.
  5. RBAC (Role-Based Access Control) – Permissions based on roles.
  6. ABAC (Attribute-Based Access Control) – Access based on attributes.
  7. Least Privilege – Grant minimal permissions needed.
  8. Zero Trust – “Never trust, always verify.”
  9. Privileged Account – High-access accounts (e.g., root, admin).
  10. Session Management – Controls user sessions (e.g., timeout, monitoring).
  11. Just-in-Time (JIT) Access – Temporary elevated access.
  12. Privileged Session Isolation – Executing privileged tasks in isolated environments.
  13. Credential Vaulting – Secure storage of secrets/passwords (e.g., CyberArk).
  14. PSM (Privileged Session Manager) – Monitors/records privileged sessions.
  15. CPM (Central Policy Manager) – Automates credential rotation & management.

3. Threats & Attacks

  1. Malware – Malicious software (viruses, worms, ransomware).
  2. Phishing – Fraudulent attempts to obtain sensitive info.
  3. Spear Phishing – Targeted phishing.
  4. Ransomware – Encrypts data until ransom is paid.
  5. DDoS (Distributed Denial-of-Service) – Overwhelms systems with traffic.
  6. Man-in-the-Middle (MitM) – Intercepting communications.
  7. SQL Injection – Injecting malicious SQL queries.
  8. XSS (Cross-Site Scripting) – Injecting scripts into web pages.
  9. Zero-Day Exploit – Attack targeting an unknown vulnerability.
  10. APT (Advanced Persistent Threat) – Long-term targeted attack.
  11. Insider Threat – Risk from within the organization.
  12. Brute Force Attack – Trying all possible password combos.
  13. Credential Stuffing – Using leaked credentials on other sites.
  14. Social Engineering – Manipulating people into revealing info.
  15. Watering Hole Attack – Compromising sites frequented by targets.

4. Network Security

  1. Firewall – Filters network traffic.
  2. IDS (Intrusion Detection System) – Monitors for malicious activity.
  3. IPS (Intrusion Prevention System) – Blocks detected threats.
  4. WAF (Web Application Firewall) – Protects web apps.
  5. VPN (Virtual Private Network) – Secure remote access.
  6. Proxy Server – An intermediary between the user and internet.
  7. DMZ (Demilitarized Zone) – Isolated network segment.
  8. NAT (Network Address Translation) – Maps private to public IPs.
  9. SIEM (Security Information & Event Management) – Aggregates/logs security events.
  10. Network Segmentation – Dividing the network into zones.

5. Cloud & DevSecOps

  1. CSPM (Cloud Security Posture Management) – Monitors cloud misconfigurations.
  2. CASB (Cloud Access Security Broker) – Enforces security between users and cloud.
  3. IaaS/PaaS/SaaS – Cloud service models.
  4. Shared Responsibility Model – Security is split between the cloud provider/user.
  5. Infrastructure as Code (IaC) – Managing infra via code (e.g., Terraform).
  6. DevSecOps – Integrating security into DevOps.
  7. SAST (Static Application Security Testing) – Code analysis without execution.
  8. DAST (Dynamic Application Security Testing) – Testing running apps.
  9. SCA (Software Composition Analysis) – Scans third-party code/libraries.
  10. Container Security – Securing Docker/Kubernetes environments.

6. Cryptography

  1. Encryption – Encoding data (symmetric/asymmetric).
  2. Symmetric Encryption – Same key for encrypt/decrypt (e.g., AES).
  3. Asymmetric Encryption – Public/private key pair (e.g., RSA).
  4. Hash Function – One-way data fingerprint (e.g., SHA-256).
  5. Digital Certificate – Binds public key to identity (PKI).
  6. PKI (Public Key Infrastructure) – Manages digital certs/keys.
  7. TLS/SSL – Secures web communications.
  8. Key Management – Handling cryptographic keys securely.
  9. HSM (Hardware Security Module) – Secure key storage device.
  10. Nonce – Number used once to prevent replay attacks.

7. Security Architecture & Frameworks

  1. Defense in Depth – Layered security controls.
  2. NIST CSF – Cybersecurity Framework (Identify, Protect, Detect, Respond, Recover).
  3. ISO/IEC 27001 – ISMS standard.
  4. CIS Controls – Best practices for cyber defense.
  5. SOC 2 – Trust services criteria for service orgs.
  6. GDPR/CCPA – Data privacy regulations.
  7. PCI DSS – Payment card security standard.
  8. Secure by Design – Build security into systems from the start.
  9. Threat Modeling – Identifying/assessing threats proactively.
  10. Attack Tree – Visualizing attack paths.

8. Endpoint & System Security

  1. EDR (Endpoint Detection & Response) – Monitors/responds to endpoint threats.
  2. Antivirus/Antimalware – Detects/removes malicious software.
  3. Patch Management – Updating software to fix vulnerabilities.
  4. Disk Encryption – Encrypts entire storage (e.g., BitLocker).
  5. TPM (Trusted Platform Module) – Hardware chip for secure crypto ops.
  6. UEFI Secure Boot – Ensures only trusted OS loads.
  7. Sandboxing – Isolating apps to limit damage.
  8. Honeypot – Decoy system to attract attackers.
  9. Rootkit – Malware hiding deep in OS.
  10. File Integrity Monitoring (FIM) – Alerts on unauthorized file changes.

9. Data Security

  1. Data Loss Prevention (DLP) – Prevents unauthorized data exfiltration.
  2. Data Masking – Hides sensitive data in non-prod environments.
  3. Tokenization – Replaces sensitive data with tokens.
  4. PII (Personally Identifiable Information) – Data identifying individuals.
  5. Data Classification – Categorizing data by sensitivity.
  6. Data Residency – Where data is physically stored.
  7. Data Sovereignty – Legal jurisdiction over data.
  8. Anonymization – Removing identifiers from data.
  9. Pseudonymization – Replacing identifiers with fake ones (reversible).
  10. Data Lifecycle Management – Governing data from creation to deletion.

10. Governance, Risk & Compliance (GRC)

  1. Risk Assessment – Identifying/analyzing risks.
  2. Risk Mitigation – Reducing risk impact/likelihood.
  3. Audit Trail – Record of system activities.
  4. Compliance – Adhering to laws/standards.
  5. Policy – Formal security rules/guidelines.
  6. Standard – Mandatory security requirements.
  7. Procedure – Step-by-step security instructions.
  8. Baseline – Minimum security configuration.
  9. KRI (Key Risk Indicator) – Metric signaling rising risk.
  10. KPI (Key Performance Indicator) – Security performance metric.

11. Incident Response & Forensics

  1. IR (Incident Response) – Handling security breaches.
  2. CSIRT (Computer Security Incident Response Team) – Responds to incidents.
  3. Playbook – Predefined IR procedures.
  4. Triage – Initial incident assessment.
  5. Containment – Limiting incident impact.
  6. Eradication – Removing threat root cause.
  7. Recovery – Restoring systems post-incident.
  8. Post-Incident Review – Lessons learned analysis.
  9. Chain of Custody – Evidence handling documentation.
  10. Memory Dump – Capturing RAM contents for analysis.

12. Application Security

  1. OWASP Top 10 – List of critical web app risks.
  2. API Security – Protecting application interfaces.
  3. Input Validation – Sanitizing user inputs.
  4. Output Encoding – Preventing XSS.
  5. Secure SDLC – Integrating security into the software dev lifecycle.
  6. Threat Intelligence – Data on current/emerging threats.
  7. Bug Bounty – Rewarding external vulnerability finders.
  8. Fuzz Testing – Sending random inputs to find bugs.
  9. Code Signing – Verifying software publisher authenticity.
  10. Supply Chain Attack – Compromising via third-party vendors.

13. Physical & Operational Security

  1. Tailgating – Unauthorized physical access following a legit user.
  2. Mantrap – Physical security checkpoint.
  3. Bollards – Barriers against vehicle attacks.
  4. Environmental Controls – Fire suppression, HVAC for data centers.
  5. Clean Desk Policy – Securing physical documents.
  6. Media Sanitization – Securely erasing storage media.
  7. Disaster Recovery (DR) – Restoring operations post-disaster.
  8. BCP (Business Continuity Plan) – Maintaining ops during disruption.
  9. RTO (Recovery Time Objective) – Max tolerable downtime.
  10. RPO (Recovery Point Objective) – Max tolerable data loss.

14. Emerging Tech & Concepts

  1. AI/ML in Security – Automated threat detection/response.
  2. IoT Security – Securing internet-connected devices.
  3. OT/ICS Security – Securing industrial control systems (e.g., SCADA, PLC).
  4. Blockchain Security – Protecting decentralized ledgers.
  5. Quantum Cryptography – Future-proof encryption.
  6. Deception Technology – Misleading attackers with fake assets.
  7. XDR (Extended Detection & Response) – Cross-layer threat correlation.
  8. SASE (Secure Access Service Edge) – Cloud-delivered security.
  9. Zero-Knowledge Proof – Verifying without revealing data.
  10. Homomorphic Encryption – Computing on encrypted data.

15. Authentication & Secrets

  1. OAuth – Delegated authorization protocol.
  2. OpenID Connect – Identity layer on OAuth.
  3. Kerberos – Network auth protocol.
  4. SAML – XML-based SSO standard.
  5. TOTP (Time-Based One-Time Password) – MFA method (e.g., Google Authenticator).
  6. FIDO2/WebAuthn – Passwordless auth standard.
  7. Password Spraying – Trying a few passwords across many accounts.
  8. Secrets Management – Handling API keys, tokens, and passwords securely.
  9. Hardware Token – Physical MFA device (e.g., YubiKey).
  10. Biometric Authentication – Fingerprint/facial recognition.

16. Vulnerability & Patch Mgmt

  1. CVE (Common Vulnerabilities & Exposures) – Public vulnerability IDs.
  2. CVSS (Common Vulnerability Scoring System) – Severity rating (0–10).
  3. Vulnerability Scanner – Tool to find system weaknesses (e.g., Nessus).
  4. Penetration Testing – Ethical hacking to find flaws.
  5. Red Team/Blue Team – Attackers vs. defenders in exercises.
  6. Purple Team – Collaboration between red/blue teams.
  7. Patch Tuesday – Microsoft’s monthly patch release day.
  8. Hotfix – Emergency patch for critical issues.
  9. Unpatched System – High-risk due to known vulnerabilities.
  10. Exploit – Code/tool leveraging a vulnerability.

17. Email & Web Security

  1. SPF (Sender Policy Framework) – Prevents email spoofing.
  2. DKIM (DomainKeys Identified Mail) – Email message signing.
  3. DMARC (Domain-based Message Auth Reporting) – Combines SPF/DKIM.
  4. Email Sandboxing – Analyzing attachments in isolation.
  5. URL Filtering – Blocking malicious websites.
  6. Browser Isolation – Running web sessions remotely.
  7. Clickjacking – Tricking users into clicking hidden elements.
  8. Malvertising – Malware via online ads.
  9. Typosquatting – Registering similar domains to trick users.
  10. HTTPS – HTTP + TLS encryption.

18. Mobile Security

  1. MDM (Mobile Device Management) – Manages corporate mobile devices.
  2. MAM (Mobile Application Management) – Secures apps on devices.
  3. BYOD (Bring Your Own Device) – Personal devices for work.
  4. App Wrapping – Adding security policies to mobile apps.
  5. Geofencing – Restricting app/device usage by location.
  6. Remote Wipe – Erasing lost/stolen device data.
  7. Jailbreaking/Rooting – Bypassing OS security (high risk).
  8. Mobile Threat Defense (MTD) – Real-time mobile threat protection.
  9. SIM Swapping – Hijacking phone number for 2FA bypass.
  10. Containerization (Mobile) – Isolating work/personal data.

19. Metrics & Reporting

  1. MTTD (Mean Time to Detect) – Avg. time to identify threats.
  2. MTTR (Mean Time to Respond/Recover) – Avg. time to contain/fix.
  3. False Positive/Negative – Incorrect threat alerts/missed threats.
  4. Security Dashboard – Visualizing security posture.
  5. Executive Summary – High-level IR/compliance reports for the board.
  6. Risk Register – Log of identified risks & mitigations.
  7. Compliance Gap Analysis – Identifying standard deviations.
  8. Security Maturity Model – Assessing program evolution (e.g., CMMI).
  9. ROI (Return on Security Investment) – Justifying security spend.
  10. Cyber Risk Quantification – Financially modeling cyber risk (e.g., FAIR).

Related Posts

Leave a Comment

Your email address will not be published. Required fields are marked *

techyengineer

Menu

Our Blogs

Contact Us

Call Us

123456789

E-Mail

techyengineer@gmail.com

head Office

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Ut elit tellus,

Copyright © 2025 techyengineer.com | Powered by techyengineer
Scroll to Top