Skip to main content
New: free AI Readiness Assessment, see where your business stands
bdManagedIT

Glossary

The managed IT glossary

Plain-English definitions of the managed IT, cybersecurity, and compliance terms that come up when you run a business on technology, from MSP and MDR to HIPAA, CJIS, and BCDR. No jargon for its own sake.

45 terms 6 sections

Section

Managed IT

The model and the moving parts of outsourced, proactive IT.

Managed Services Provider

MSP

A company that runs and supports your IT for a flat recurring fee, monitoring, securing, patching, and fixing your systems proactively instead of waiting for them to break.

Our managed IT

Managed IT Services

Outsourced day-to-day IT, help desk, monitoring, security, patching, and strategy, delivered for a predictable monthly fee rather than hourly.

Managed IT

Co-Managed IT

A partnership where an MSP works alongside your in-house IT staff, adding security tooling, emergency coverage, and project capacity without replacing anyone.

IT strategy

Remote Monitoring and Management

RMM

The software an MSP uses to watch your devices and servers around the clock, push updates, and catch problems before users notice them.

Managed IT

Help Desk

The support team users contact for IT issues. A good help desk resolves most problems remotely in minutes and escalates to on-site help when needed.

Managed IT

Service Level Agreement

SLA

A written promise of how fast a provider will respond and resolve issues. It defines response times by priority so support is measurable, not vague.

Managed IT

Patch Management

The disciplined process of testing and applying software and security updates across every device, closing the known vulnerabilities attackers rely on.

Managed IT

Virtual CIO

vCIO

An outsourced IT strategist who aligns your technology with business goals, plans budgets and roadmaps, and gives you executive-level IT guidance without a full-time hire.

vCIO services

Break-Fix

The old reactive model of paying for IT only when something breaks. It is unpredictable and leaves systems unmonitored between failures, unlike managed services.

IT-as-a-Service

Endpoint

Any device that connects to your network, laptops, desktops, phones, servers, each one a place that has to be secured and managed.

Managed EDR

Section

Cybersecurity

The controls and threats behind a security-first IT program.

Zero Trust

A security model that trusts nothing by default and verifies every user, device, and request, instead of assuming anything inside the network is safe.

Cyber security

Endpoint Detection and Response

EDR

Software that continuously watches each device for malicious behavior, then isolates and remediates threats automatically, going far beyond traditional antivirus.

Managed EDR

Managed Detection and Response

MDR

A service that pairs detection software with a human security team monitoring around the clock, so threats are investigated and stopped, not just flagged.

Cyber security

Security Operations Center

SOC

A team and toolset that monitors an organization for security threats 24/7, investigating alerts and responding to incidents in real time.

Managed SOC

Multi-Factor Authentication

MFA

A login requiring two or more proofs of identity, such as a password plus a phone prompt. It blocks the vast majority of account-takeover attacks.

MFA

Phishing

Fraudulent emails or messages designed to trick people into revealing credentials, sending money, or installing malware. It is the most common way breaches start.

Security awareness training

Ransomware

Malware that encrypts your files and demands payment to unlock them. Tested backups and layered security are the difference between a scare and a shutdown.

Managed EDR

Application Allowlisting

A security approach that blocks every program by default and only permits approved software to run, stopping ransomware and unknown threats before they execute.

Managed EDR

Email Security

Filtering and controls that stop phishing, spoofing, and malicious attachments before they reach the inbox, where most attacks begin.

Email security

Security Awareness Training

Ongoing education and simulated phishing that teach staff to recognize and report attacks, turning your people from the weakest link into a line of defense.

Awareness training

Penetration Testing

An authorized simulated attack on your systems by security professionals to find and fix weaknesses before a real attacker exploits them.

Penetration testing

Firewall

A device or software that controls traffic in and out of your network based on security rules, the first gate between your systems and the internet.

Network & infrastructure

Section

Compliance

The frameworks regulated Georgia organizations answer to.

HIPAA

The federal law governing how healthcare organizations protect patient health information, requiring access controls, encryption, logging, and tested backups.

HIPAA center

PCI-DSS

The security standard for any business that accepts card payments, requiring network segmentation and controls that keep cardholder data safe.

PCI-DSS center

CJIS

The FBI security policy governing systems that touch criminal-justice data, requiring strong authentication, encryption, and audit controls. Critical for housing authorities.

CJIS center

CIS Controls

The Center for Internet Security's prioritized set of 18 security controls (v8) that give any organization a practical baseline for reducing cyber risk.

CIS Controls v8

Protected Health Information

PHI

Any health data that can identify a patient. Under HIPAA it must be encrypted, access-controlled, logged, and recoverable.

HIPAA compliance

Risk Assessment

A structured review of where your data and systems are exposed, ranking risks so you fix the most dangerous gaps first. It is the starting point of most compliance frameworks.

Free IT assessment

Audit Trail

A tamper-resistant record of who accessed what and when. Auditors and frameworks require it to prove controls are actually working.

Compliance centers

Data Governance

The policies and controls that define how data is classified, accessed, retained, and protected across an organization.

Security & compliance

Section

Backup & Continuity

What keeps a bad day from becoming a closed business.

Business Continuity and Disaster Recovery

BCDR

The plan and technology that keep a business running, and get it back online fast, after an outage, attack, or disaster.

Backup & recovery

Backup

A separate, recoverable copy of your data. Backups are only real if they are tested, off-site, and protected from being encrypted or deleted by an attacker.

Managed backup

Recovery Time Objective

RTO

The maximum time your business can tolerate being down before recovery must be complete. It drives how your backup and continuity plan is designed.

Managed backup & DR

Recovery Point Objective

RPO

The maximum amount of data, measured in time, you can afford to lose. An RPO of one hour means backups must run at least hourly.

Managed backup & DR

Immutable Backup

A backup that cannot be altered or deleted for a set period, even by an administrator or attacker, so ransomware cannot destroy your last clean copy.

Managed backup & DR

Section

Cloud & Productivity

The platforms a modern team actually runs on.

Cloud Migration

Moving applications, data, and infrastructure from on-premise servers to cloud platforms for flexibility, resilience, and remote access.

Cloud services

Microsoft 365

Microsoft's cloud suite, Outlook, Teams, SharePoint, and Office, that most small businesses run on. Securing and managing it well is core to modern IT.

Microsoft 365

Azure

Microsoft's cloud platform for hosting servers, applications, and infrastructure, an alternative to maintaining hardware on-site.

Azure hosting

Virtual Desktop

VDI / DaaS

A full desktop hosted in the cloud and streamed to any device, so staff work securely from anywhere without data living on the endpoint.

Virtual desktop

SaaS, PaaS, IaaS

The three cloud service models: Software as a Service (ready-to-use apps), Platform as a Service (a place to build apps), and Infrastructure as a Service (rented servers and storage).

Cloud services

Still have questions about your IT?

Book a first appointment with a local Georgia IT strategist. Plain answers, no obligation.

Book your first appointment