Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » COBIT » COBIT domains

COBIT domains

COBIT 4.1 breaks down IT governance and management into four key domains, each focusing on specific areas of IT processes. 

Evaluate, Direct, and Monitor (EDM): EDM forms the major component of the COBIT 5 model and concerns itself with the optimal accomplishment of IT business integration and governance. This domain includes identifying directions for IT’s strategic growth, evaluating outcomes and achievements, and creating guarantees of activities’ conformity to standards and regulations.  

Align, Plan, and Organize (APO): APO, on the other hand, is more focused on turning corporate strategies into executable IT projects. This can be defined as taking and documenting IT choices to coordinate IT actions with a company’s goals.

Build, Acquire, and Implement (BAI): In the BAI domain, more emphasis is placed on the practical implementation of IT projects, from development to procurement and integration. It has some features associated with risk management, quality assurance, and good project work.  

Deliver, Service, and Support (DSS): DSS stands for the management of information technology solutions in organizations after implementation. This entails service provision for an organization’s needs, management of events or occurrences, and support for the total IT services to guarantee their efficiency.  

Monitor, Evaluate, and Assess (MEA): MEA is central to proving continuity toward improving IT governance. It is an ongoing process of monitoring IT processes, IT performance, and even the outcomes of IT governance and management practices.

Additional reading

vulnerability management tools
Blogs Compliance management

Top 10 Vulnerability Management Tools

With remote work and international teams becoming the new normal post-COVID, it’s hard to keep up with all your network devices, access points, or even software updates for your devices. Not having track of all these could easily make your network vulnerable to data breaches, cyber-attacks, and information loss. That’s why having a vulnerability management…
gdpr article 4
Blogs GDPR

GDPR Article 4 Explained: Essential Terms and Definitions

GDPR, with its 11 chapters and 99 Articles, aims to protect user data privacy across the European Union(EU). Unfortunately, across these 11 chapters and 99 articles, the makers of GDPR have used complex jargon that is not easy to understand.  In this article, we’ve listed and explained all the GDPR article 4 definitions of legal-speak…
SOC 2 data centers
Blogs SOC 2

SOC 2 Compliant Data Centers – Quick Guide

Data is at the heart of every modern business—not only does it dictate their every move, but it also forms the basis of their evolution. As the business scales, the volume of data it handles grows. And so, it becomes vital that companies safeguard and manage this precious resource to maximize profitability. One solution that…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales