💬🖋 برخی اختصارات #Abbreviations مرتبط با کانال

CDC: Cyber Defense Center
CSOC: Cyber Security Operations Center
CSIRT: Computer Security Incident Response Team
CERT: Computer Emergency Response Team
DFIR: Digital Forensics and Incident Response
CTI: Cyber Threat Intelligence
SIEM: Security Information and Event Management
UBA: User Behavior Analytics
UEBA: User and Entity Behavior Analytics
SOAR: Security Orchestration, Automation and Response
IoC: Indicators of Compromise
IoA: Indicators of Attack
POC: Proof of Concept
DREAD: Damage, Reproducibility, Exploitability, Affected users, Discoverability
STRIDE: Spoofing, Tampering, Repudiation, Information disclosure, Denial of Service, Elevation of Privilege
ATP: Advanced Threat Protection
IODEF: Incident Object Denoscription Exchange Format
VERIS: Vocabulary for Event Recording and Incident Sharing
EDR: Endpoint Detection & Response
NDR: Network Detection & Response
XDR: eXtended Detection & Response
MDR: Managed Detection & Response
MSSP: Managed Security Service Provider
SASE: Secure Access Service Edge

GRC: Governance, Risk and Compliance
COBIT: Control Objectives for Information and Related Technology
ISMS: Information Security Management System
PCI-DSS: Payment Card Industry - Data Security Standard
CSF: Cybersecurity Framework
GDPR: General Data Protection Regulation
ITIL: Information Technology Infrastructure Library
SOC-CMM: Security Operations Center - Capability Maturity Model
CMMI: Capability Maturity Model Integration
HIPAA: Health Insurance Portability and Accountability Act
ATT@CK: Adversarial Tactics, Techniques, and Common Knowledge
OWASP: Open Web Application Security Project
SAMM: Software Assurance Maturity Model
OSSTMM: Open Source Security Testing Methodology Manual
SDLC: Software Development lifecycle
ASVS: Application Security Verification Standard
NICE: National Initiative for Cybersecurity Education

SANS: SysAdmin, Audit, Network, and Security
NIST: National Institute of Standards and Technology
CIS: Center for Internet Security
MS-ISAC: Multi-State Information Sharing and Analysis Center
CISA: Cybersecurity and Infrastructure Security Agency
NSA: National Security Agency
DoD: Department of Defense
FBI: Federal Bureau of Investigation
GCHQ: Government Communications Headquarters
NCSC: National Cyber Security Centre
INCD: Israel National Cyber Directorate
ENISA: European Union Agency for Cybersecurity
FISMA: Federal Information Security Management Act
ISO: International Organization Standardization
IEC: International Electrotechnical Commission
IAPP: International Association of Privacy Professionals
FFIEC: Federal Financial Institutions Examination Council's

DLP: Data Loss Prevention
WAF: Web Application Firewall
IAM: Identify Access Management
PAM: Privileged Access Management
FIM: File Integrity Monitoring
NGFW: Next-Generation Firewall
HSM: Hardware Security Module
KMS: Key Managment System
BCP: Business Continuty Plan
DRP: Disaster Recovery Plan
CVE: Common Vulnerabilities and Exposures
CVSS: Common Vulnerability Scoring System
CWE: Common Weakness Enumeration
CAPEC: Common Attack Pattern Enumeration and Classification
DNS: Domain Name System
DDoS: Distributed Denial-of-Service
C&C: Command and Control
BYOD: Bring Your Own Devices
PIMS: Personal Information Management System
PII: Personal Identifiable Information
ICS: Industrial Control Systems
SCADA: Supervisory Control and Data Acquisition
CISO: Chief Information Security Officer
DPO: Data Protection Officer
CIA: Confidentiality, Integrity, Availability
RAID: Redundant Array of Independent Disks
API: Application Programming Interface

این لیست به مرور تکمیل خواهد شد.
(بروزرسانی شهریور ۱۴۰۴)

☝️ @IntSec