IAVA: An information assurance vulnerability alert is an announcement of a computer application software or operating system vulnerability notification in the form of alerts, bulletins, and technical advisories identified by US Cyber Command.
POA&M: Plan of Action & Milestones serve as corrective actions for tracking and planning the resolution of information security weaknesses.
Federal DoDD 8570: Directive 8570 defines the baseline cybersecurity training and certification requirements for IT personnel.
Federal DoDD 8140: Directive 8140 further defines directive 8570 responsibilities.
ACAS: Assured Compliance Assessment Solution is a suite of applications that each meet different security objectives in order to combine security assessment reporting.
IAVM: Information Assurance Vulnerability Alert for vulnerability notifications.
STIG: Cybersecurity Methodology for standardizing security procedures.