Endpoint Management Glossary

• AD (Active Directory)
  A directory service used for user and device authentication and policy enforcement.
• Agent
  A lightweight software component installed on endpoints to enable management, monitoring, and control.
• Application Control
  Security measure that restricts which applications can run on an endpoint.
• Asset Management
  Tracking and managing hardware and software assets across the organization.
• Auto-remediation
  Automatic resolution of detected issues or misconfigurations without human intervention.
• Baseline Configuration
  A standardized, approved configuration applied to endpoints to maintain compliance and security.
• BitLocker
  A full disk encryption feature in Windows used to protect data on endpoints.
• Blacklist
  A list of applications, websites, or IPs explicitly blocked on managed endpoints.
• BYOD (Bring Your Own Device)
  A policy allowing employees to use personal devices for work, often requiring special controls.
• CMDB
  A centralized repository containing details of IT assets and their relationships.
• Compliance Management
  Ensuring endpoints adhere to organizational and regulatory standards (e.g., patch levels, antivirus).
• Configuration Drift
  Deviation of an endpoint from its intended configuration over time.
• Credential Guard
  A Windows security feature that isolates and protects login credentials from attacks.
• Data Loss Prevention (DLP)
  Tools and policies to prevent unauthorized data transmission from endpoints.
• Device Control
  Management of peripheral devices (USBs, printers, etc.) connected to endpoints.
• Device Enrollment
  The process of registering a device into the endpoint management system.
• Device Posture
  The security and compliance status of an endpoint at any given time.
• Endpoint Compliance
  A measure of whether an endpoint meets predefined security and operational standards.
• Endpoint Detection and Response (EDR)
  A solution providing continuous monitoring and response to advanced threats on endpoints.
• Endpoint Hardening
  Techniques to reduce vulnerabilities in endpoints (e.g., disabling unused ports, services).
• Endpoint Visibility
  The ability to see and analyze the health, activity, and status of all endpoints in real time.
• Encryption Management
  Managing full-disk or file-level encryption policies and keys across devices.
• File Integrity Monitoring
  Monitors changes to files to detect potential malicious activity or policy violations.
• Firewall
  A network security device that monitors and controls incoming and outgoing traffic.
• Firmware Updates
  Updates to the embedded software controlling hardware components of a device.
• Geofencing
  Technology to enforce policies based on a device's physical location.
• Governance Risk and Compliance (GRC)
  A framework for managing IT governance, risk, and compliance.
• Group Policy
  A feature in Windows to manage user and computer settings centrally.
• Hardware Inventory
  A list of all physical hardware devices in an IT environment.
• Health Attestation
  Verifies that a device is in a trusted state before allowing network access.
• Host Intrusion Prevention System (HIPS)
  Protects endpoints from unauthorized changes by monitoring system activities.
• Identity and Access Management (IAM)
  Framework for managing digital identities and controlling access to resources.
• Incident Response
  Coordinated approach to detecting and resolving IT security incidents.
• IT Asset Discovery
  Process of finding and listing unknown IT assets connected to the network.
• Jump Server
  A secure system that administrators use to access and manage other systems.
• Just-In-Time Access
  Grants temporary privileged access only when needed.
• Kerberos Authentication
  A network authentication protocol used in Windows environments.
• Key Management
  Administration of cryptographic keys to ensure secure data access and transmission.
• Kill Chain
  A concept used to describe stages of a cyberattack.
• Least Privilege
  Security principle of granting the minimum access necessary for users.
• Local Admin Rights
  Permissions granted to users to make changes on their own machines.
• Log Management
  Collection, storage, and analysis of system and security logs.
• Malware Protection
  Tools and policies that detect, prevent, and remove malicious software.
• Mobile Device Management (MDM)
  Management of mobile devices like smartphones and tablets.
• Monitoring Agent
  Software that collects performance and status data from endpoints.
• Network Access Control (NAC)
  Controls device access to the network based on security compliance.
• NIST Compliance
  Security framework developed by the National Institute of Standards and Technology.
• Non-compliant Devices
  Devices not adhering to defined security or operational policies.
• Offboarding Automation
  Automated processes to safely remove users and devices from the system.
• Onboarding Workflow
  Steps to securely add new devices into the enterprise environment.
• OS Patching
  The process of updating operating system files and services to fix vulnerabilities.
• Patch Management
  Routine of identifying, testing, and deploying software patches.
• PowerShell Scripting
  Scripting language commonly used to automate Windows administrative tasks.
• Privilege Escalation
  An unauthorized gain in user privileges within an IT system.
• Quarantine Policy
  A policy that isolates infected or misbehaving endpoints.
• Quick Remediation
  A fast, prebuilt solution for fixing common endpoint issues.
• RCA (Root Cause Analysis)
  Method of identifying the root cause of incidents or issues.
• Remote Monitoring and Management (RMM)
  Managing systems and networks from a central location.
• Role-Based Access Control (RBAC)
  Access control system where roles determine access rights.
• Security Information and Event Management (SIEM)
  A solution that aggregates logs and alerts for threat analysis.
• Self-Healing
  Automatic repair or configuration enforcement to restore normal functionality.
• Software Deployment
  Distribution and installation of software across managed devices.
• System Hardening
  Reducing the attack surface by limiting functions and access.
• Telemetry
  Data collection and reporting on endpoint performance or usage.
• Threat Detection
  Detection of malicious activities or patterns on endpoints.
• Two-Factor Authentication (2FA)
  Security process requiring two methods of identity verification.
• Unified Endpoint Management (UEM)
  A platform that unifies MDM, PC management, and other tools.
• USB Control
  Control over access to USB and removable devices.
• User Behavior Analytics (UBA)
  Analysis of user actions to detect risky behavior patterns.
• VDI (Virtual Desktop Infrastructure)
  A system that delivers virtual desktops to users.
• Virtual Private Network (VPN)
  Encrypted connection over the internet to protect data.
• Vulnerability Assessment
  A process to identify and assess security weaknesses.
• Whitelist
  A list of approved applications or devices allowed to operate.
• Windows Defender
  Built-in Windows antivirus and endpoint protection solution.
• Workflow Automation
  Automation of endpoint-related processes through rule-based flows.
• XDR (Extended Detection and Response)
  A security solution that integrates multiple threat detection tools.
• YARA Rules
  Custom rules for identifying malware using pattern matching.
• Zero Trust Security
  A security model that assumes no device or user is inherently trusted.
• Zero-Day Exploit
  A vulnerability exploited by attackers before it’s publicly known.
• Zone-Based Firewall
  A firewall that applies rules based on network zones.