Acronyms I Have Learnt Part 2

CSPM - Cloud Security Posture Management

• The process of formulating processes in order to defend against and respond to security issues. This includes monitoring for threats, taking inventory of assets, monitoring for intrusions, incident response and review and improving of policies.

RBAC - Role Based Access Control

• I knew this one but I wanted to note it done. RBAC is the process of ensuring that users are given access to data and functionality based on the role/s they are assigned.

RPO - Recovery Point Objective

• This refers to when there is an incident or outage, it can refer the a point in time where an organisation is aiming to return to, for example if the RPO for an organisation is two hours, they are aiming to return to the state where the data was two hours ago as a maximum, ideally less.

RTO - Recovery Time Objective

• Again referring to when things have gone wrong, this is the ideal time to restoration of services, e.g. an RTO of an hour specifies that an organisation wants to restore service in less than sixty minutes

ASM - Attack Surface Management

• The process of taking inventory and control of the potential attack surface of an organisation.

CAASM Cyber Asset Attack Surface Management

• Similar to ASM, taking inventory and monitoring the exposed assets for an organisation