A workplace policy that allows employees to use personal devices—such as smartphones or laptops—for work purposes. While convenient, BYOD increases security risks and requires strong policies and mobile device management (MDM) to keep data secure.

A set of practices and tools designed to protect users from threats encountered while browsing the internet, including malicious websites, drive-by downloads, and browser-based exploits.

A hacking method where attackers try multiple password combinations or credentials until they find the correct one. Brute force attacks are often automated and used to break into accounts or systems with weak passwords.

A targeted cyber attack where threat actors impersonate a trusted executive or vendor to trick employees into transferring funds or sharing sensitive information. BEC scams often rely on social engineering and lack obvious red flags like attachments or links.

A structured process for planning, reviewing, and implementing changes to IT systems and infrastructure in a way that minimizes disruption and reduces the risk of unintended consequences.