System testing is conducted on an integrated software to evaluate its complete and end-to-end behavior. It ensures that the entire software functions according to specified requirements. This phase tests the entire software as a single entity.

Change Control in Configuration Management involves a systematic approach to manage changes by evaluating, approving, or disapproving changes, ensuring that changes are documented, and ensuring that configuration items maintain their integrity throughout the lifecycle.

The "Exit Criteria" in test planning defines the specific conditions or metrics that need to be achieved before the software can be released. It ensures that the product has reached a certain quality standard before it's deemed fit for production.

The "risk matrix" is a tool that visualizes risks in a matrix format, based on their likelihood (or probability) on one axis and their impact on another. By categorizing risks in this manner, teams can easily prioritize which risks need immediate attention and which can be addressed later or monitored.

Configuration Management ensures consistency across various attributes of a product. One of these attributes is the 'physical' aspect, which relates to the tangible characteristics, components, and structure of the product. This is vital for ensuring the product meets the expected standards and requirements.

Big Bang Integration Testing involves integrating all the modules or components at once after they are fully developed. This can sometimes lead to challenges in identifying defects as all components are integrated in one go without any incremental checks.

The "Enough Time" guideline under accessibility testing ensures that users, especially those with disabilities, are given adequate time to read, comprehend, and utilize the content. This is crucial to make the web inclusive for all users.

End-to-End Testing involves testing an application's flow as a whole to ensure that the entire process of a user accessing and using the site works smoothly. In this scenario, the entire shopping process, from product selection to payment and receiving a confirmation, is being tested, making it a classic case of End-to-End Testing.

While both a security audit and vulnerability scan aim to identify vulnerabilities, a security audit is a more comprehensive review of an organization's entire information system, including policies, procedures, and controls. On the other hand, a vulnerability scan focuses on identifying technical vulnerabilities.

Vulnerability Scanning is a systematic approach that uses specialized tools to identify, rank, and report potential vulnerabilities in a computer system or network. It provides an overview of the security flaws but doesn't necessarily exploit them like penetration testing.