🔐 Cybersecurity Glossary

A prolonged and targeted cyberattack in which an intruder gains access to a network and remains undetected for an extended period.

AI Regulatory Intelligence Advisor — CISO Consulting's enterprise Virtual CISO (vCISO) module. ARIA provides AI-powered cybersecurity advisory services including policy generation, risk assessment, compliance gap analysis, board reports, and document generation in Word, Excel, PowerPoint, and PDF formats. Specialized in Saudi regulatory frameworks: SAMA CSF, NCA ECC, PDPL, and international standards including ISO 27001, NIST CSF, and PCI DSS.

A structured set of guidelines and best practices designed to help organizations manage and reduce cybersecurity risk.

A network security device that monitors and filters incoming and outgoing network traffic based on predetermined security rules.

A documented plan that outlines the procedures and responsibilities for detecting, responding to, and recovering from cybersecurity incidents.

Software specifically designed to disrupt, damage, or gain unauthorized access to a computer system.

A globally-accessible knowledge base of adversary tactics and techniques based on real-world observations of cyberattacks.

An authentication method requiring two or more verification factors: something you know, something you have, or something you are.

Malicious software that encrypts victim's files and demands payment for the decryption key.

The amount and type of risk that an organization is willing to accept in pursuit of its objectives.

The process of identifying, analyzing, and evaluating risks to determine their likelihood and potential impact on the organization.

Any circumstance or event with the potential to adversely impact organizational operations through unauthorized access, destruction, disclosure, or modification of information.

The proactive practice of searching through networks and datasets to detect threats that evade existing security solutions.

Evidence-based knowledge about existing or emerging threats that helps organizations make informed security decisions.

A weakness in a system, application, or process that could be exploited by a threat to gain unauthorized access or cause harm.

A security model based on the principle of never trust, always verify, requiring strict identity verification for every person and device attempting to access resources.

Security model based on the principle "never trust, always verify" — every user, device, and application must be continuously authenticated regardless of network location. Key pillars: strong identity, device validation, least-privilege access, microsegmentation, and continuous monitoring.

A software security vulnerability that is unknown to the vendor and for which no patch or fix is available.