Word Family Cluster / Glossary Category

Tools and Technology Glossary

This category should explain tool categories at a neutral level and position RiskTKO® as complementary exposure-management context without disclosing integration, scoring, or orchestration methods.

Use this category page to introduce the term family, list individual glossary entries, explain how the terms relate to insider risk exposure, and route readers to Foundations, Use Cases, Procedures, Tools, Standards, Metrics, Personas, and relevant IRCF™ pages.

Terms in this Category (12)

CASB

A Cloud Access Security Broker (CASB) helps organizations monitor and control access, use, and data movement across cloud applications and services.

DLP

Data Loss Prevention (DLP) refers to controls and technologies that help identify, monitor, restrict, or prevent unauthorized movement or exposure of sensitive data.

DSPM

Data Security Posture Management (DSPM) helps discover, classify, assess, and monitor sensitive data exposure across data environments.

EDR/XDR

Endpoint Detection and Response (EDR) and Extended Detection and Response (XDR) tools collect and analyze endpoint or cross-domain security telemetry.

IAM

Identity and Access Management (IAM) refers to the policies, processes, and technologies used to manage identities, authentication, authorization, and access lifecycle.

IGA

Identity Governance and Administration (IGA) focuses on governing access rights, certifications, approvals, roles, and identity lifecycle controls.

PAM

Privileged Access Management (PAM) refers to controls and technologies used to govern, monitor, secure, and review privileged accounts and privileged sessions.

SIEM

Security Information and Event Management (SIEM) is a technology category that collects, correlates, and analyzes security log and event data.

SOAR

Security Orchestration, Automation, and Response (SOAR) tools help coordinate security workflows, enrichment, response actions, and case processes.

UAM

User Activity Monitoring (UAM) is the collection and review of user activity data to support security, compliance, investigation, or insider-risk use cases.

UBA

User Behavior Analytics (UBA) is a technology approach that analyzes user activity patterns to identify unusual or risky behavior.

UEBA

User and Entity Behavior Analytics (UEBA) analyzes behavior patterns for users, accounts, devices, systems, and other entities to identify anomalies or risk signals.

Educational Reference NoteThis glossary category is part of the ITMG® Insider Risk Body of Knowledge™ and is designed to establish a common, non-stigmatizing vocabulary. For program implementation frameworks, quantitative assessments, or enterprise metrics, readers are encouraged to consult the Insider Risk Capability Framework™ (IRCF™) or request a Guided Exposure Assessment.