Reference library

Glossary

A comprehensive glossary of all things IT management, asset lifecycle, and enterprise technology

46 terms

Automated Provisioning

The automatic configuration of user accounts, access rights, and software when an employee joins or changes roles. Automated provisioning connects HR data to identity systems to eliminate manual IT setup.

BYOD (Bring Your Own Device)

A policy allowing employees to use personal devices for work. BYOD requires clear security policies, MDM enrollment, and access controls to protect company data on employee-owned hardware.

Device Lifecycle Management

Managing devices from procurement through deployment, maintenance, and eventual retirement or disposal. This holistic approach ensures devices deliver maximum value while minimizing total cost of ownership across the organization.

Device Refresh Cycle

The planned timeline for replacing aging IT hardware across an organization. A defined refresh cycle keeps devices performant and secure while allowing IT to plan procurement requirements in advance.

Device-as-a-Service (DaaS)

A subscription model where organizations lease devices and bundled services, deployment, support, refresh, and end-of-life disposal, for a fixed monthly fee instead of purchasing hardware outright.

Employee Lifecycle Management

The end-to-end management of an employee's technology and access needs from joining to departure. It coordinates IT, HR, and operations to ensure the right tools and access are in place at every stage.

Endpoint Management

The centralized management and security of all endpoint devices connected to an organization's network. It ensures devices are properly configured, updated, and protected against security threats through unified policies.

Endpoint Security Management

The practice of protecting every device connected to an organization's network from cyber threats. It combines technical controls, encryption, patch management, EDR, with policies and monitoring across the entire device fleet.

Ghost Assets

IT assets recorded in an organization's asset register that are no longer delivering value, devices that have been lost, stolen, or informally retired without being formally decommissioned.

Global IT Operations

The management of IT infrastructure, devices, support, and processes across geographically distributed locations. Global IT operations addresses the complexity of maintaining consistent standards and service levels across regions with different regulations, logistics, and workforce needs.

Hardware Procurement Automation

Using automated systems to streamline the purchasing and delivery of IT hardware equipment. This automation reduces manual effort, accelerates procurement cycles, and ensures consistent policy compliance across all purchases.

Identity and Access Management (IAM)

Framework of policies and technologies ensuring the right individuals access the right resources. IAM systems manage digital identities and their access privileges, providing secure authentication and authorization across enterprise systems.

IT Asset Disposition (ITAD)

The process of safely retiring IT equipment at the end of its useful life. ITAD covers data destruction, device refurbishment, resale, and compliant disposal, ensuring retired assets do not become a security or regulatory liability.

IT Asset Management (ITAM)

The process of tracking, managing, and optimizing an organization's IT assets throughout their entire lifecycle. ITAM enables organizations to make informed decisions about technology investments while ensuring compliance and reducing costs.

IT Asset Redeployment

Repurposing and reassigning IT assets to new users or purposes to maximize their value. This sustainable approach extends asset lifecycles, reduces electronic waste, and provides significant cost savings versus new purchases.

IT Asset Retrieval

The process of recovering company-owned IT equipment from employees, particularly remote workers. This is especially critical for distributed workforces, requiring efficient logistics, tracking systems, and clear return policies.

IT Asset Tracking

The ongoing process of recording and monitoring the location, status, and ownership of IT assets throughout their lifecycle. Effective asset tracking provides real-time fleet visibility and prevents losses from untracked equipment.

IT Budget Optimization

The practice of managing IT spending to maximize business value relative to cost. IT budget optimization identifies waste, reallocates resources to higher priorities, and builds a spending plan aligned with organizational goals.

IT Governance

The framework of policies, processes, and controls ensuring IT resources are used effectively, securely, and in alignment with business objectives. IT governance connects technology decisions to business strategy.

IT Offboarding

The secure process of revoking access and retrieving IT assets when employees leave the organization. It includes systematic access removal and proper handling of company-owned devices to ensure no security gaps remain.

IT Onboarding

The process of provisioning new employees with the technology resources they need to be productive. Effective IT onboarding ensures new hires have all necessary hardware, software, accounts, and access from day one.

IT Policy Enforcement

The process of ensuring IT policies, covering security, acceptable use, and device configuration, are consistently applied across all devices and users, moving beyond written rules to automated technical controls.

IT Procurement

The strategic process of sourcing, purchasing, and acquiring IT hardware, software, and services. It involves vendor evaluation, contract negotiation, and ensuring acquisitions align with organizational needs and budget constraints.

IT Service Desk

The function responsible for handling employee IT support requests, from password resets to hardware failures. An effective service desk is the front line of IT operations, balancing response speed with resolution quality.

IT Workflow Automation

The use of software to automate repetitive IT processes, access provisioning, ticket routing, device enrollment, compliance checks, without manual intervention, reducing errors and freeing IT teams for higher-value work.

Joiner Mover Leaver (JML)

The three-stage model for managing user access across the employee lifecycle. JML ensures access is correctly granted at joining, updated through role changes, and fully removed at departure.

Mobile Device Management (MDM)

Software solutions for securing, monitoring, and managing mobile devices used within an organization. MDM enables IT departments to enforce security policies, deploy applications, and remotely manage devices across multiple platforms.

Multi-Factor Authentication (MFA)

A security mechanism requiring users to verify their identity through two or more factors before gaining access, typically something they know, something they have, or something they are.

PCaaS (PC-as-a-Service)

A subscription model for computers that bundles the device, deployment, support, and end-of-life disposal into a per-seat monthly fee. PCaaS extends the Device-as-a-Service model specifically to the PC fleet.

Privileged Access Management (PAM)

The set of controls used to manage, monitor, and secure high-privilege accounts and systems. PAM limits who can use administrative credentials, under what conditions, and with what oversight.

Remote IT Management

The tools, processes, and practices used to manage, support, and secure IT assets and users who are not physically present in the office. Essential for distributed, hybrid, and remote-first organizations.

Role-Based Access Control (RBAC)

A method of restricting system access based on a user's role within an organization. RBAC assigns permissions to roles rather than individuals, so access rights are managed at scale without custom configuration for each person.

SaaS Cost Optimization

Strategies and practices to reduce SaaS spending while maintaining necessary functionality and service levels. This includes identifying unused licenses, eliminating duplicate applications, and negotiating better vendor terms.

SaaS License Management

The practice of tracking, allocating, and optimizing software-as-a-service subscriptions. SaaS license management prevents overspending on unused seats while ensuring teams have the access they need.

SaaS Management

The practice of managing, optimizing, and governing an organization's SaaS application portfolio. It addresses challenges like shadow IT, license waste, and security risks by providing visibility and control over the entire SaaS ecosystem.

SaaS Renewal Management

The practice of tracking SaaS contract end dates, reviewing usage before renewal, and negotiating proactively to avoid overpaying or auto-renewing subscriptions that no longer serve business needs.

SaaS Spend Management

The practice of tracking, controlling, and optimizing total SaaS expenditure. SaaS spend management combines visibility into what's being spent with mechanisms to enforce purchasing controls and eliminate waste.

Secure Data Erasure

The process of permanently removing data from storage devices so it cannot be recovered. Required before devices are decommissioned, redeployed, or disposed of, and must meet recognized standards to satisfy regulatory requirements.

Shadow IT

Technology solutions used within an organization without explicit IT department approval or knowledge. While often driven by productivity needs, shadow IT poses significant security, compliance, and cost risks that must be addressed.

Single Sign-On (SSO)

An authentication method that allows users to log in once and access all connected applications without re-entering credentials. SSO simplifies the login experience while centralizing authentication control for IT teams.

Software Asset Management (SAM)

The practice of tracking, managing, and optimizing software licenses across an organization. SAM ensures every installation is authorized, compliant with vendor agreements, and not costing more than it should.

Software License Compliance

The state of having the right number and type of licenses to cover all software installations and usage within an organization. It requires ongoing reconciliation of purchased licenses against actual deployments.

Unified Endpoint Management (UEM)

A comprehensive approach to managing all endpoint devices from a single platform. UEM consolidates the management of diverse device types and operating systems, offering consistent security and management capabilities.

User Deprovisioning

The systematic removal of a user's access rights, accounts, and permissions when they leave or change roles. Effective deprovisioning ensures no orphaned accounts remain and that departing employees cannot access company systems post-departure.

Zero Trust Security

A security model built on the principle that no user, device, or system is trusted by default. Every access request must be verified based on identity, device health, and context, continuously, not just at login.

Zero-Touch Deployment

Automated device setup and configuration requiring minimal or no IT intervention. Devices ship directly to end users and configure themselves upon first boot, connecting to management systems automatically.