Cybersecurity Glossary

A comprehensive solution focusing on preventing threats at the endpoint level using deep learning technologies. MAED emphasizes “Zero-Time” prevention, which allows for the blocking of unknown threats and new variants without the need for analysis post-alert. It aims to reduce false positives and ensure minimal resource interruption.

A cybersecurity technology designed to monitor endpoint activities and detect and respond to threats. EDR enhances data telemetry to improve the response to incidents, providing detailed visibility into endpoint behavior and facilitating rapid reaction to potential threats.

SCUD is a service designed to provide advanced threat protection for cloud environments. It connects to cloud email and collaboration apps, scanning for threats after existing security but before reaching the inbox. SCUD offers protection against phishing, malware, insider threats, and business email compromise, all managed and supported 24/7 by Blokworx’s US-based SOC.

SNPR is a fully-managed firewall service that offers enterprise-level edge security. It includes the deployment and management of Next Generation Firewalls, supported by 24/7 monitoring and incident response from Blokworx’s SOC. SNPR protects against network threats and vulnerabilities, ensuring a dynamic security posture through continuous monitoring and updates​

A service that includes the configuration, engineering, migration, deployment, and management of next-generation firewalls. This service aims to protect an organization’s network by ensuring proper firewall setup and continuous monitoring to defend against intrusions and threats

A security model that moves traditional firewall functionalities to the cloud, providing secure and compliant network access for businesses. SASE integrates wide-area networking with comprehensive security services, including secure web gateways, CASB, and zero-trust network access.

A holistic security approach that collects and correlates data across multiple security layers – including endpoints, servers, and networks – to improve threat detection and response capabilities. Managed XDR platforms provide logging, data retention, reporting, telemetry, and response functionalities across an organization’s IT environment.

A proactive cybersecurity practice that involves searching through networks to detect and isolate advanced threats that evade existing security solutions. Threat hunting leverages automated alerts supported by human analysis to identify and mitigate potential threats before they cause harm​.

A centralized unit that deals with security issues on an organizational and technical level. A managed SOC offers 24/7 monitoring and incident response services to protect against cyber threats, ensuring continuous vigilance and rapid reaction to any security incidents.

The process of identifying and reducing the number of potential entry points for cyber attackers. This involves regular vulnerability scanning and implementing recommendations for remediation and mitigation to enhance an organization’s security posture.

A collection of technologies, policies, controls, and services designed to protect cloud-based systems, data, and infrastructure from cybersecurity threats. Cloud security encompasses securing cloud access, data integrity, and ensuring compliance with regulatory standards​.

A security framework that assumes no implicit trust within the network, whether internal or external. Zero Trust requires strict identity verification for every person and device trying to access resources on a private network, minimizing the attack surface and mitigating risks of data breaches.

A technique used in cybersecurity to detect anomalies and potential threats by analyzing patterns of behavior within an IT environment. Behavioral analysis helps in identifying unusual activities that may indicate a security incident, even if specific threats are not recognized by traditional security tools.

An advanced form of artificial intelligence used in cybersecurity to improve threat detection and prevention at the endpoint level. This technology continuously learns from data, enhancing its ability to identify and block new and evolving threats in real-time.

A high-touch, personalized onboarding process where cybersecurity providers ensure a seamless transition and setup of their services. This includes thorough planning, implementation, and tuning of security solutions to meet the specific needs of the client.

The structured approach taken by an organization to handle and manage the aftermath of a security breach or cyberattack. The goal is to effectively contain the incident, minimize damage, and reduce recovery time and costs​.

An advanced firewall that goes beyond traditional firewall functionalities by integrating additional features like deep packet inspection, intrusion prevention, and application awareness. NGFWs provide more comprehensive security by addressing modern threats and vulnerabilities​.

The analysis of data regarding threats and threat actors to better understand and mitigate potential cyber risks. Threat intelligence includes collecting information from various sources to anticipate and defend against cyber threats proactively.