Acronyms on Cybersecurity and Compliance used on our site
| CFPB |
Consumer Financial Protection Bureau |
| CFTC |
Commodity Futures Trading Commission |
| CGEIT |
Certified in the Governance of Enterprise IT |
| CIO |
Chief Information Officer |
| CISA |
Certified Information Systems Auditor |
| CISM |
Chief Information Security Manager |
| CISO |
Chief Information Security Officer |
| CISPP |
Certified Information Systems Security Professional |
| COBIT |
Control Objectives for Information and Related Technologies |
| CRISC |
Certified in Risk and Information Systems Controls |
| CSA |
Cloud Security Alliance |
| CSF |
Cybersecurity Framework |
| CSO |
Chief Security Officer |
| DDoS |
Distributed Denial of Service |
| DFA |
Dodd Frank Act |
| DHS |
Department of Homeland Security |
| DLP |
Data Loss Prevention |
| DOD |
Department of Defense |
| DoS |
Denial of Service |
| EMR |
Electronic Medical Record |
| FERPA |
Family Educational Rights and Privacy Act |
| FFIEC |
Federal Financial Institutions Examination Council |
| FINRA |
Financial Industry Regulatory Authority |
| FIPA |
Florida Information Protection Act |
| FISMA |
Federal Information Security Management Act |
| FTC |
Federal Trade Commission |
| GLBA |
Gramm-Leach-Bliley Act |
| HCISPP |
HealthCare Information Security and Privacy Practitioner |
| HHS |
Department of Health and Human Services |
| HIPAA |
Health Insurance Portability and Accountability Act |
| HITECH |
Health Information Technology for Economic and Clinical Health Act |
| HITPRO |
Health Information Technology Professional |
| IDS |
Intrusion Detection System |
| IEC |
International Electrotechnical Commission |
| IOT |
Internet of Things |
| IPS |
Intrusion Prevention System |
| ISMS |
Information Security Management System |
| ISO |
International Organization for Standardization |
| ITIL |
Information Technology Infrastructure Library |
| NCSA |
National Cyber Security Alliance |
| NIST |
National Institute of Standards and Technology |
| NIST-CSF |
National Institute of Standards and Technology – Cybersecurity Framework |
| 23 NYCRR 500 |
New York State Cybersecurity Regulations |
| NYDFS |
New York Department of Financial Services |
| OCR |
Office of Civil Rights |
| OTA |
Online Trust Alliance |
| PCI-DSS |
Payment Card Industry Data Security Standard |
| PHI |
Protected Health Information |
| PII |
Personally Identifiable Information |
| SAS |
Statement on Auditing Standards |
| SCA |
Security Control Assessments |
| SOX |
Sarbanes-Oxley Act |
| VPN |
Virtual Private Network |