
Cybersecurity & IT Terms in Plain English
A quick-reference glossary of the IT and cybersecurity terms business owners hear most, explained in one plain sentence each.
IT and cybersecurity conversations are full of acronyms. When you're trying to make a decision about your business, jargon gets in the way.
This glossary covers the terms you're most likely to hear from an IT provider, a security vendor, or your own team. Each one is defined in a single plain-English sentence.
Threats You'll Hear About
| Term | Plain-English Definition | |---|---| | Phishing | A fake email, text, or message designed to trick someone into clicking a bad link or handing over information. | | Malware | Any software built to damage, disrupt, or steal from a computer system. | | Ransomware | Malware that locks up your files and demands payment to unlock them. | | Social Engineering | Tricking a person, rather than a computer, into giving up access or information. | | Zero-Day | A newly discovered software flaw that the vendor hasn't yet had a chance to fix. |
Protections You'll Hear About
| Term | Plain-English Definition | |---|---| | Firewall | A checkpoint that filters traffic moving in and out of your network. | | MFA / 2FA | A login step that requires a second proof of identity, like a code on your phone, in addition to your password. | | VPN | A private, encrypted connection that lets someone access your network safely from outside the office. | | Encryption | Scrambling data so it's unreadable to anyone without the right key. | | EDR | Software that watches individual computers for suspicious behavior and can respond automatically. | | Endpoint | Any device connecting to your network, such as a laptop, phone, or server. |
Keeping Things Running
| Term | Plain-English Definition | |---|---| | Patch / Patching | An update from a software vendor that fixes a known problem or security flaw. | | Backup | A saved copy of your data kept separately so it can be restored if the original is lost or damaged. | | Disaster Recovery | The plan for getting your systems and data back up after a major outage or attack. | | Cloud | Software or storage that runs on someone else's servers and is accessed over the internet instead of on your own equipment. | | DNS | The system that translates a website address, like coulee.tech, into the numeric address computers use to find it. |
People and Processes
| Term | Plain-English Definition | |---|---| | MSP | A company that manages your IT systems on an ongoing basis, usually for a monthly fee. | | SOC | A team or service that continuously watches for security alerts across your systems. | | Incident Response | The set of steps taken to contain and recover from a security event once it's discovered. | | Compliance | Meeting a specific set of rules or standards, often required by an industry, insurer, or regulator. |
Why This Vocabulary Matters
You don't need to become a technical expert to run a well-protected business. But knowing these terms means you can ask better questions, read a vendor proposal with confidence, and understand what your IT provider is actually doing for you.
That kind of shared vocabulary between you and your team is part of the Governance and Culture dimensions of IT and AI maturity — it's hard to set clear policies or hold vendors accountable for something no one can describe in plain terms.
If a term comes up that isn't on this list, or you'd like help thinking through what applies to your business, contact us.


