| TCP | Transmission Control Protocol |
| SWG | Secure Web Gateway |
| IDS | Intrusion Detection System |
| XSS | Cross-site Scripting |
| SNMP | Simple Network Management Protocol |
| ITIL | Information Technology Infrastructure Library |
| OS | Operating System |
| RFI | Remote File Inclusion |
| SDN | Software-defined Networking |
| DR | Disaster Recovery |
| BIA | Business Impact Analysis |
| GPO | Group Policy Objects |
| PCI DSS | Payment Card Industry Data Security Standard |
| IaaS | Infrastructure as a Service |
| ISO | International Organization for Standardization |
| MOU | Memorandum of Understanding |
| PLC | Programmable Logic Controller |
| VLAN | Virtual LAN |
| ACL | Access Control List |
| CI/CD | Continuous Integration and Continuous Delivery |
| SFTP | Secure File Transfer Protocol |
| LFI | Local File Inclusion |
| SQL | Structured Query Languge |
| NTP | Network Time Protocol |
| UEBA | User and Entity Behavior Analytics |
| HIPS | Host-based Intrusion Prevention System |
| IP | Internet Protocol |
| C2 | Command and Control |
| NIDS | Network-based Intrusion Detection System |
| OSSTMM | Open Source Security Testing Methodology Manual |
| STIX | Structured Threat Information Expression |
| ICS | Industrial Control Systems |
| EDR | Endpoint Detection and Response |
| MTTR | Mean Time to Repair |
| SIEM | Security Information and Event Management |
| SPF | Sender Policy Framework |
| OWASP | Open Web Application Security Project |
| LAN | Local Area Network |
| DNS | Domain Name Service |
| IT | Information Technology |
| CDN | Content Delivery Network |
| DoS | Denial of Service |
| XML | Extensible Markup Language |
| RCE | Remote Code Execution |
| SaaS | Software as a Service |
| SMTP | Simple Mail Transfer Protocol |
| SOC | Security Operations Center |
| ZAP | Zed Attack Proxy |
| NGFW | Next-generation Firewall |
| SSRF | Server-side Request Forgery |
| DKIM | Domain Keys Identified Mail |
| REST | Representational State Transfer |
| ICMP | Internet Control Message Protocol |
| COBIT | Control Objectives for Information and Related Technologies |
| SLO | Service-level Objective |
| CA | Certificate Authority |
| CSIRT | Cybersecurity Incident Response Team |
| KPI | Key Performance Indicator |
| API | Application Programming Interface |
| PHP | Hypertext Preprocessor |
| HTTP | Hypertext Transfer Protocol |
| LDAPS | Lightweight Directory Access Protocol |
| BC | Business Continuity |
| BCP | Business Continuity Plan |
| NAC | Network Access Control |
| SCADA | Supervisory Control and Data Acquisition |
| APT | Advanced Persistent Threat |
| FTP | File Transfer Protocol |
| GDB | GNU Debugger |
| OT | Operational Technology |
| XDR | Extended Detection Response |
| CERT | Computer Emergency Response Team |
| OpenVAS | Open Vulnerability Assessment Scanner |
| IR | Incident Response |
| WAN | Wide Area Network |
| CIS | Center for Internet Security |
| LOI | Letter of Intent |
| FIM | File Integrity Monitoring |
| MFA | Multifactor Authentication |
| VPN | Virtual Private Network |
| XXE | XML External Entity |
| DDoS | Distributed Denial of Service |
| SSO | Single Sign-on |
| POC | Proof of Concept |
| DMARC | Domain-based Message Authentication, Reporting, and Conformance |
| URL | Uniform Resource Locator |
| CVSS | Common Vulnerability Scoring System |
| DLP | Data Loss Prevention |
| JSON | JavaScript Object Notation |
| PKI | Public Key Infrastructure |
| RXSS | Reflected Cross-site Scripting |
| HTTPS | Hypertext Transfer Protocol Secure |
| IoC | Indicators of Compromise |
| WAF | Web Application Firewall |
| MTTD | Mean Time to Detect |
| AV | Antivirus |
| TRACE | Trade Reporting and Compliance Engine |
| CSRF | Cross-site Request Forgery |
| CASB | Cloud Access Security Broker |
| CHD | Cardholder Data |
| SLA | Service-level Agreement |
| SMB | Server Message Block |
| TTP | Tactics, Techniques, and Procedures |
| MAC | Media Access Control |
| PID | Process Identifier |
| USB | Universal Serial Bus |
| HIDS | Host-based Intrusion Detection System |
| PAM | Privileged Access Management |
| SDLC | Software Development Life Cycle |
| VM | Virtual Machine |
| MSP | Managed Service Provider |
| IPS | Intrusion Prevention System |
| MSF | Metasploit Framework |
| NDA | Non-disclosure Agreement |
| RDP | Remote Desktop Protocol |
| SAML | Security Assertion Markup Language |
| TFTP | Trivial File Transfer Protocol |
| TLS | Transport Layer Security |
| SASE | Secure Access Secure Edge |
| BGP | Border Gateway Protocol |
| SOAR | Security Orchestration, Automation, and Response |
| ARP | Address Resolution Protocol |
| PII | Personally Identifiable Information |
| SSL | Secure Sockets Layer |
| CVE | Common Vulnerabilities and Exposures |
| URI | Uniform Resource Identifier |
| ZTNA | Zero Trust Network Access |
| MSSP | Managed Security Service Provider |
