To clarify the ever-increasing number of acronyms in the cyber security space I have started curating this list of definitions and links to articles.
CASB = Cloud Access Security Broker
A cloud access security broker (CASB) is a security policy enforcement point positioned between enterprise users and cloud service providers. CASBs monitor all activity and enforce security policies between cloud service users and cloud applications.
For more info:
What is a Cloud Access Security Broker (CASB)?
CIEM = Cloud Infrastructure Entitlement Management
For more info:
What is Cloud Infrastructure Entitlement Management (CIEM)?
CIEM and its relationship to IAM, PIM and PAM
SASE = Secure Access Service Edge
Secure Access Service Edge (SASE) is a security framework that converges network and security service that includes SD-WAN, SWG, CASB, NGFW and Zero Trust Network Access (ZTNA).
For more info:
What is Secure Access Service Edge (SASE)
SIEM = Security Information and Event Management
Security Information and Event Management (SIEM) is a solution that helps organizations detect, analyze, and respond to security threats before they harm business operations. SIEM combines both security information management (SIM) and security event management (SEM) into one security management system.
For more info:
What is a Security Information and Event Management (SIEM)
SOAR = Security Orchestration, Automation and Response
Security Orchestration, Automation, and Response (SOAR) refers to a set of services and tools that automate cyberattack prevention and response. This automation is accomplished by unifying your integrations, defining how tasks should be run, and developing an incident response plan.
For more info:
What is Security Orchestration, Automation, and Response (SOAR)
Other Security Acronyms
- 2fa = Two factor authentication
- EDR = Endpoint detection and response
- EPP = Endpoint Protection Platform
- IDS = Intrusion Detection System
- IPS = Intrusion Prevention System
- PAM = Privileged Access Management
- SSO = Single Sign On
- UEBA = User and entity behaviour analytics
- VPN = Virtual Private Network
- WAF = Web Application Firewall
- XDR = Extended detection and response
This document will be updated frequently as I continue to write more articles. If you need anything clarified or have anything to add please comment below.