Archives: Glossary Terms

Two Factor Authentication An authentication method which uses two forms of identification before access is granted to a system or software.  The first factor may be […]

Active Directory A Microsoft network technology allowing central management of users, security policy and network services.

Best and Final Offer Often used in property sales, but also extends to purchasing and procurement processes; best and final offer is the seller’s last […]

Business As Usual An organisation functioning as ususal, no reduction or impact on services.

Business Impact Analysis An analysis of potential impacts on business, negative or positive, usually used as part of Business Continuity Planning.  The analysis can be […]

Bring Your Own Device The culture of employees using their own laptop, phones and other devices for work purposes.  Organisation’s may apply varying levels of […]

Change Advisory Board Provides support to a change management team by approving changes and assisting in prioritisation and assessment.

Corrective Action / Preventive Action Actions to correct a non-conformance and prevent reoccurrence.  Note: Preventive Action has been replaced by a Risk-Based approach in Annex […]

Corrective Action Request Actions required to address / close out a non conformance.

Certification Body An organisation responsible for assessing a management system and providing certification.