Acronyms on Cybersecurity and Compliance used on our site


CFPB

Consumer Financial Protection Bureau

CFTC

Commodity Futures Trading Commission

CGEIT

Certified in the Governance of Enterprise IT

CIO

Chief Information Officer

CISA

Certified Information Systems Auditor

CISM

Chief Information Security Manager

CISO

Chief Information Security Officer

CISPP

Certified Information Systems Security Professional

COBIT

Control Objectives for Information and Related Technologies

CRISC

Certified in Risk and Information Systems Controls

CSA

Cloud Security Alliance

CSF

Cybersecurity Framework

CSO

Chief Security Officer

DDoS

Distributed Denial of Service

DFA

Dodd Frank Act

DHS

Department of Homeland Security

DLP

Data Loss Prevention

DOD

Department of Defense

DoS

Denial of Service

EMR

Electronic Medical Record

FERPA

Family Educational Rights and Privacy Act

FFIEC

Federal Financial Institutions Examination Council

FINRA

Financial Industry Regulatory Authority

FIPA

Florida Information Protection Act

FISMA

Federal Information Security Management Act

FTC

Federal Trade Commission

GLBA

Gramm-Leach-Bliley Act

HCISPP

HealthCare Information Security and Privacy Practitioner

HHS

Department of Health and Human Services

HIPAA

Health Insurance Portability and Accountability Act

HITECH

Health Information Technology for Economic and Clinical Health Act

HITPRO

Health Information Technology Professional

IDS

Intrusion Detection System

IEC

International Electrotechnical Commission

IOT

Internet of Things

IPS

Intrusion Prevention System

ISMS

Information Security Management System

ISO

International Organization for Standardization

ITIL

Information Technology Infrastructure Library

NCSA

National Cyber Security Alliance

NIST

National Institute of Standards and Technology

NIST-CSF

National Institute of Standards and Technology – Cybersecurity Framework

23 NYCRR 500

New York State Cybersecurity Regulations

NYDFS

New York Department of Financial Services

OCR

Office of Civil Rights

OTA

Online Trust Alliance

PCI-DSS

Payment Card Industry Data Security Standard

PHI

Protected Health Information

PII

Personally Identifiable Information

SAS

Statement on Auditing Standards

SCA

Security Control Assessments

SOX

Sarbanes-Oxley Act

VPN

Virtual Private Network