GLOSSARY
acceptable use policy (AUP) Organizational policy that describes both acceptable and unacceptable actions when using organizational computing resources, as well as the consequences of violating the policy.
access control The processes and technologies involved in protecting information, systems, and data against unauthorized disclosure, modification, or loss through the control of access to those resources physically and/or logically.
accountability The ability to trace an action or event to a definitive user and to hold that user responsible for their actions.
active tools Tools that interact actively with a system and can often give you a more realistic perspective of vulnerabilities and the overall control effectiveness; ...
Get CRISC Certified in Risk and Information Systems Control All-in-One Exam Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
