IT Management

Compliance, risk and governance

This glossary contains definitions related to compliance. Some definitions explain the meaning of words used in compliance regulations. Other definitions are related to the strategies that compliance officers use to mitigate risk and create a manageable compliance infrastructure.

• compliance audit

  A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

• Amazon S3

  Amazon Simple Storage Service (Amazon S3) is a scalable, high-speed, web-based cloud storage service designed for online backup and archiving of data and applications on Amazon Web Services.

• SSAE 16

  The Statement on Standards for Attestation Engagements No. 16 (SSAE 16) is a set of auditing standards and guidance on using the standards, published by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA), for redefining and updating how service companies report on compliance controls.

CRM

Terms related to customer relationship management (CRM), including definitions about call centers and contact centers.

• chat channels

  Chat channels are technologies enabling companies to engage with customers in live conversations.

• ToFu, MoFu and BoFu

  ToFu, MoFu and BoFu is a method used by sales and marketing professionals to pace and cater their approach to sales leads within a sales funnel, depending on the customer’s current phase of the purchase decision.

• support-driven development

  Support-driven development is a strategy used by developers to create products that fit the needs of customers by designing them based on direct customer feedback.

ERP

Terms related to business, including definitions about project management and words and phrases about human resources, finance and vertical industries.

• compliance audit

  A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

• proof of concept (POC)

  A proof of concept (POC) is an exercise in which work is focused on determining whether an idea can be turned into a reality.

• candidate experience

  Candidate experience reflects a person's feelings about going through a company's job application process.

Government IT

Terms related to government IT, including definitions about specific federal, state and local government programs as well as words and phrases about policy and compliance.

• Joint Enterprise Defense Infrastructure (JEDI)

  Joint Enterprise Defense Infrastructure (JEDI) is the proposed Department of Defense (DoD) cloud infrastructure network.

• compliance audit

  A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

• SSAE 16

  The Statement on Standards for Attestation Engagements No. 16 (SSAE 16) is a set of auditing standards and guidance on using the standards, published by the Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPA), for redefining and updating how service companies report on compliance controls.

Healthcare IT

Terms related to healthcare IT, including definitions about healthcare information and management systems and words and phrases about electronic health records, meaningful use, government regulations and medical technology.

• compliance audit

  A compliance audit is a comprehensive review of an organization's adherence to regulatory guidelines.

• mHealth (mobile health)

  mHealth (mobile health) is a general term for the use of mobile phones and other wireless technology in medical care.

• neurofeedback

  Neurofeedback is a therapeutic method based on presenting to clients a real-time display of their brain activity and training them, over time, to learn to control that activity.

HR management

• Individual Retirement Account (IRA)

  An Individual Retirement Account (IRA) is a retirement savings account set up with a financial institution or brokerage firm that offers tax breaks for those investing income for their retirement.

• 401(k) plan

  A 401(k) plan is a type of tax deferred savings pension account that is set up for employees by employers. These plans are named for the subsection 401(k) of the IRS code they are found under.

• Dunning-Kruger effect

  The Dunning-Kruger effect is a cognitive bias that leads incompetent people to overestimate their own intelligence and capability.

IT procurement

Terms related to the activities and procedures necessary to acquire information technology (IT) products and services.

• ISV (independent software vendor)

  An ISV (independent software vendor) makes and sells software products that run on one or more computer hardware or operating system (OS) platforms.

• procure to pay (P2P)

  Procure to pay is the process of requisitioning, purchasing, receiving, paying for and accounting for goods and services.

• Alibaba Holding Group Limited

  Alibaba Group Holding Limited is a Chinese business conglomerate that runs the world’s largest retailer and one of the largest online e-commerce sites in the world, Alibaba.com.

Network management

Terms related to managing computer networks, including definitions about LANS or WANS and words and phrases about network design, troubleshooting, security and backups.

• network disaster recovery plan

  A network disaster recovery plan is a set of procedures designed to prepare an organization to respond to an interruption of network services during a natural or manmade catastrophe.

• Amazon S3

  Amazon Simple Storage Service (Amazon S3) is a scalable, high-speed, web-based cloud storage service designed for online backup and archiving of data and applications on Amazon Web Services.

• NetOps

  NetOps, also referred to as NetOps 2.0, is a networking approach that encompasses the use of DevOps tools, methods and techniques to create an agile, scalable and programmable infrastructure capable of delivering business-critical applications and services rapidly and efficiently.

Project management

Terms related to project management, including definitions about project management methodologies and tools.

• OODA loop

  An OODA loop (Observe, Orient, Decide, Act) is a four-step approach to decision-making that focuses on filtering available information, putting it in context and quickly making the most appropriate decision while also understanding that changes can be made as more data becomes available.

• Demand Planning

  Demand planning is the process of forecasting the demand for a product or service so it can be produced and delivered more efficiently and to the satisfaction of customers.

• support-driven development

  Support-driven development is a strategy used by developers to create products that fit the needs of customers by designing them based on direct customer feedback.

Security management

Terms related to security management, including definitions about intrusion detection systems (IDS) and words and phrases about asset management, security policies, security monitoring, authorization and authentication.

• OODA loop

  An OODA loop (Observe, Orient, Decide, Act) is a four-step approach to decision-making that focuses on filtering available information, putting it in context and quickly making the most appropriate decision while also understanding that changes can be made as more data becomes available.

• RSA algorithm (Rivest-Shamir-Adleman)

  The RSA algorithm is the basis of a cryptosystem -- a suite of cryptographic algorithms that are used for specific security services or purposes -- which enables public key encryption and is widely used to secure sensitive data, particularly when it is being sent over an insecure network such as the internet.

• IP Spoofing

  IP spoofing is the crafting of Internet Protocol (IP) packets with a source IP address that has been modified to impersonate another computer system, or to hide the identity of the sender, or both.

SEO

Definitions related to search engine optimization, including definitions about SEO and words and phrases about bots, spiders, organic traffic and all areas of search engine marketing (SEM).

• Click to Tweet

  Click to Tweet is a website that automatically generates links for users to share content through their own Twitter accounts.

• Google My Business

  Google My Business is a free online business listing service that is integrated with the Google search engine.

• search engine

  A search engine is a program that gathers information (web pages) in a database and provides relevant results to user keyword queries.

Software asset management

Terms related to software management, including definitions about licensing and words and phrases about software lifecycle management and software asset management.

• systems integrator

  A systems integrator is an individual or business that builds computing systems for clients by combining hardware, software, networking and storage products from multiple vendors.

• Netflix Spinnaker

  Netflix Spinnaker is an open source, multi-cloud continuous delivery application that can be used to release software updates rapidly and efficiently.

• support-driven development

  Support-driven development is a strategy used by developers to create products that fit the needs of customers by designing them based on direct customer feedback.

Storage management

Terms related to data storage management, including definitions about enterprise storage and words and phrases about storage infrastructure, storage capacity and hierarchical storage management (HSM).

• Amazon S3

  Amazon Simple Storage Service (Amazon S3) is a scalable, high-speed, web-based cloud storage service designed for online backup and archiving of data and applications on Amazon Web Services.

• enterprise storage

  Enterprise storage is a centralized repository for business information that provides common data management, protection and data sharing functions through connections to computer systems.

• data archiving

  Data archiving migrates infrequently used data to low-cost, high-capacity archive storage for long-term retention.