Under the General Data Protection Regulation (GDPR), organizations must report data breaches to the relevant supervisory authority within 72 hours of becoming aware of the breach. This prompt reporting requirement is designed to ensure swift action and notification to protect individuals' privacy.

Authorization is the process of deciding whether a user's request should be granted or denied. It's the step that follows authentication and validation and determines the level of access a user has to resources based on their permissions or privileges.

Code review is the process of examining code for security vulnerabilities before it's executed in a live environment. This helps identify and fix security issues in the code.

In TLS, the Diffie-Hellman Key Exchange is used to establish a shared secret without transmitting the secret itself. This process allows secure key exchange even if eavesdroppers are present.

ISO/IEC 27001 is a globally recognized standard for information security management systems (ISMS). It provides a systematic approach for managing sensitive company information, ensuring its confidentiality, integrity, and availability.

Symmetric Key Encryption, also known as Private Key Encryption, uses the same key for both the encryption and decryption processes. It's efficient for fast and secure data transfer, but it requires a secure way to share the key between the sender and receiver.

An "Incident Response Plan" outlines the actions to take when a security breach occurs, helping to manage and respond to such incidents.

The sudden spike in outbound traffic from a workstation contacting multiple external IP addresses is a strong indicator of a botnet infection. A botnet is a network of compromised devices controlled by an attacker, often used for various malicious activities, including sending spam or launching DDoS attacks.

SSL/TLS (Secure Sockets Layer/Transport Layer Security) primarily operates at the Application Layer (Layer 7) of the OSI model. It provides encryption and security for application-level data.

HIPAA (Health Insurance Portability and Accountability Act) is a U.S. federal law that mandates the protection of health information privacy and security. It requires healthcare organizations to notify affected patients in the event of a data breach involving their protected health information.