🔐 Cybersecurity Glossary
Over 265 professional cybersecurity terms in English & Arabic — your comprehensive reference for the cybersecurity world
265 terms
16 categories
47 frameworks
All
🏛 Governance & Strategy 35
⚖ Risk Management 17
🔑 Identity & Access 14
🌐 Network Security 16
🔒 Data Protection 11
⚡ Threat & Attack 22
🚨 Incident Response 13
☑ Compliance & Audit 12
🔐 Cryptography 11
☁ Cloud Security 9
💻 Application Security 11
§ Privacy & Data Law 12
🛡 Security Operations 17
♻ Business Continuity 9
🇸🇦 Saudi Regulations 14
🛡️ Platform Tools 1
NCA_ECC (122)
SAMA_CSF (76)
PCI_DSS (47)
ISO_27001 (39)
PDPL (34)
NIST_CSF (29)
Array (25)
NCA ECC (20)
SAMA CSF (20)
NCA_CSCC (14)
14 terms
♻ Tabletop Exercise
TTX
تمرين الطاولة
A discussion-based exercise where key personnel walk through a simulated scenario to test plans and identify gaps.
Third-Party and Cloud Computing Cybersecurity
TPCCC
الأمن السيبراني للأطراف الثالثة والحوسبة السحابية
The fifth domain of the NCA ECC framework that establishes requirements for managing cybersecurity risks associated with third-party service providers, vendors, and cloud service providers, including due diligence, contractual security requirements, and ongoing monitoring of external parties.
☑ Third-Party Audit
تدقيق الطرف الثالث
An independent assessment conducted by an external qualified auditor to verify compliance with standards or regulations.
Third-Party Cybersecurity Management
SAMA CSF Domain 4
إدارة الأمن السيبراني للأطراف الثالثة
The fourth domain of SAMA CSF that mandates financial institutions to implement comprehensive third-party risk management programs, including vendor due diligence, contractual security requirements, continuous monitoring of third-party security posture, and incident notification obligations for service providers handling sensitive financial data.
Third-Party Cybersecurity Risk Management
TPCRM
إدارة مخاطر الأمن السيبراني للأطراف الثالثة
An NCA ECC control domain mandating organizations to assess, monitor, and manage cybersecurity risks associated with vendors, suppliers, service providers, and other external parties that have access to organizational systems or data, including contractual security requirements and ongoing compliance verification.
⚖ Third-Party Risk Management
TPRM
إدارة مخاطر الأطراف الثالثة
The process of analyzing and controlling risks presented by third parties to an organization's data and operations.
⚖ Threat
التهديد
Any circumstance or event with the potential to adversely impact organizational operations through unauthorized access, destruction, disclosure, or modification of information.
Threat Actor
TA
الجهة الفاعلة للتهديد
An individual, group, or entity that conducts or has the intent to conduct malicious cyber activities against an organization's information systems or data. Threat actors are categorized by motivation (financial, political, espionage), capability (nation-state, organized crime, hacktivists), and targeting patterns.
🛡 Threat Hunting
مطاردة التهديدات
The proactive practice of searching through networks and datasets to detect threats that evade existing security solutions.
🛡 Threat Intelligence
TI
استخبارات التهديدات
Evidence-based knowledge about existing or emerging threats that helps organizations make informed security decisions.
🚨 Threat Intelligence Sharing
مشاركة استخبارات التهديدات
The exchange of cyber threat information between organizations, government entities, and security communities using standards like STIX/TAXII.
⚖ Threat Modeling
نمذجة التهديدات
A structured approach for identifying and prioritizing potential threats to a system and determining countermeasures.
🔒 Tokenization
الترميز
The process of replacing sensitive data with unique identification symbols that retain all essential information without compromising security.
🔐 Transport Layer Security
TLS
أمن طبقة النقل
A cryptographic protocol designed to provide communications security over a computer network, used to secure web traffic.