| Term | Definition | |------|-------------| | | Information Assurance – measures to protect info systems | | CND | Computer Network Defense – active/passive protection of networks | | CNDSP | Computer Network Defense Service Provider (e.g., RCCB, ARCYBER) | | HBSS | Host-Based Security System (McAfee ePO, ENS) | | ACAS | Assured Compliance Assessment Solution (Tenable SecurityCenter) | | STIG | Security Technical Implementation Guide (DoD baseline) | | SCAP | Security Content Automation Protocol (automated STIG checks) | | IATT/ATC | Interim Authority to Test / Authority to Connect |
Policy, plans, and roles.