ISC2 Cybersecurity Certification Vocabularies (Latest 2026/2027 Update) 100% Correct Questions and Verified Answers| Grade A

ISC2 Cybersecurity Certification Vocabularies (Latest 2026/2027 Update) 100% Correct Questions and Verified Answers| Grade A

ISC2 Cybersecurity Certification Vocabularies (Latest 2026/2027 Update) 100% Correct Questions and Verified Answers| Grade A Q: Baseline Answer: A documented, lowest level of security configuration allowed by a standard or organization. Q: Biometric Answer: Biological characteristics of an individual, such as a fingerprint, hand geometry, voice, or iris patterns. Q: Bit Answer: The most essential representation of data (zero or one) at Layer 1 of the Open Systems Interconnection (OSI) model. Q: Bot Answer: Malicious code that acts like a remotely controlled "robot" for an attacker, with other Trojan and worm capabilities. Q: Breach Answer: The loss of control, compromise, unauthorized disclosure, unauthorized acquisition or any similar occurrence where: a person other than an authorized user accesses or potentially accesses personally identifiable information; or an authorized user accesses personally identifiable information for other than an authorized purpose. Source: NIST SP 800-53 Rev. 5 Q: Broadcast Answer: Broadcast transmission is a one-to-many (one-to-everyone) form of sending internet traffic. Q: Business Continuity (BC) Answer: Actions, processes and tools for ensuring an organization can continue critical operations during a contingency. Q: Business Continuity Plan (BCP) Answer: The documentation of a predetermined set of instructions or procedures that describe how an organization's mission/business processes will be sustained during and after a significant disruption. Q: Business Impact Analysis (BIA) Answer: An analysis of an information system's requirements, functions, and interdependencies used to characterize system contingency requirements and priorities in the event of a significant disruption. NIST SP 800-34 Rev. 1 Q: Byte Answer: The byte is a unit of digital information that most commonly consists of eight bits. Q: Checksum Answer: A digit representing the sum of the correct digits in a piece of stored or transmitted digital data, against which later comparisons can be made to detect errors in the data. Q: Ciphertext Answer: The altered form of a plaintext message so it is unreadable for anyone except the intended recipients. In other words, it has been turned into a secret. Q: Classification Answer: Classification identifies the degree of harm to the organization, its stakeholders or others that might result if an information asset is divulged to an unauthorized person, process or organization. In short, classification is focused first and foremost on maintaining the confidentiality of the data, based on the data sensitivity. Q: Classified or Sensitive Information Answer: Information that has been determined to require protection against unauthorized disclosure and is marked to indicate its classified status and classification level when in documentary form. Q: Cloud Computing Answer: A model for enabling ubiquitous, convenient, on-demand network access to a shared pool of configurable computing resources (e.g., networks, servers, storage, applications, and services) that can be rapidly provisioned and released with minimal management effort or service provider interaction. NIST 800-145 Q: Community Cloud Answer: A system in which the cloud infrastructure is provisioned for exclusive use by a specific community of consumers from organizations that have shared concerns (e.g., mission, security requirements, policy and compliance considerations). It may be owned, managed and operated by one or more of the organizations in the community, a third party or some combination of them, and it may exist on or off premises. NIST 800-145 Q: Confidentiality Answer: The characteristic of data or information when it is not made available or disclosed to unauthorized persons or processes. NIST 800-66 Q: Configuration Management Answer: A process and discipline used to ensure that the only changes made to a system are those that have been authorized and validated.