Glossary of Key Terms

A

Acceptable use policy (AUP)

A policy that informs employees what is considered acceptable use for systems and data. Banners and logon screens are sometimes used to remind personnel of the policy.

Accept

One of the techniques used to manage risk. When the cost to reduce the risk is greater than the potential loss, the risk is accepted. A risk is also accepted if management considers the risk necessary and tolerable for business.

Account management policy

A written policy created to ensure that user and computer accounts are managed securely. It identifies details for creating accounts, such as using a firstname. lastname format. It specifies what to do with unused accounts. It can also include requirements for account lockout ...

Get Managing Risk in Information Systems now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.