IAVA: An information assurance vulnerability alert is an announcement of a computer application software or operating system vulnerability notification in the form of alerts, bulletins, and technical advisories identified by US Cyber Command.

POA&M: Plan of Action & Milestones serve as corrective actions for tracking and planning the resolution of information security weaknesses.

Federal DoDD 8570: Directive 8570 defines the baseline cybersecurity training and certification requirements for IT personnel.

Federal DoDD 8140: Directive 8140 further defines directive 8570 responsibilities.

ACAS: Assured Compliance Assessment Solution is a suite of applications that each meet different security objectives in order to combine security assessment reporting.

IAVM: Information Assurance Vulnerability Alert for vulnerability notifications.

STIG: Cybersecurity Methodology for standardizing security procedures.