CyberSafe Vendors

CyberSafe Vocabulary for Vendors:

• Compliance: Adhering to all security standards, laws (like FERPA), and the district's contractual security requirements.

• Penetration Testing (Pen Test): Authorized, simulated cyberattacks on a system to find security vulnerabilities before a real attacker does.

• Non-Disclosure Agreement (NDA)/Data Privacy Agreement (DPA): A legal contract restricting the sharing or use of sensitive CISD information.

• Data Encryption: The process of scrambling data so that only authorized parties can read it, protecting it both in transit and storage.

• Zero-Trust Model: A security concept that requires strict verification for every person and device trying to access network resources, regardless of their location.

• Service Level Agreement (SLA): The contract section defining the required performance, uptime, and security responsibilities of the vendor.

• Vulnerability Assessment: A review of IT systems to identify and classify security flaws that could be exploited.