Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » Compensating Controls

Compensating Controls

Also referred to as Alternative Controls, it is a set of security and privacy controls implemented by an organization in lieu of the NIST Special Publication 800-53 to mitigate risks and provide an alternative approach to achieving the same security objectives as primary controls. They are often used to reduce the impact of security breaches or data loss when standard controls are not functioning as intended or when you cannot implement primary security controls due to technical or operational limitations. Compensating controls should be appropriately documented and regularly reviewed to ensure their effectiveness.

Additional reading

What Enterprises Stand To Gain From A Unified Map Of Commitments

In the previous article, we looked at why enterprise commitments can no longer be managed as scattered promises across multiple systems.  The problem we tried to emphasize was that organizations have far too many commitments, spread across too many owners, written in too many formats, and changing too often for any one team to confidently…

PCI Compliant Hosting (All you need to know)

TL,DR: PCI compliant hosting provides a secure environment for transmitting, storing, and processing cardholder information. Any organization processing card transactions on its server must use a PCI compliant host The host must meet requirements including up-to-date networks, a vulnerability management program, strict access controls, and periodically reviewed security policies Using third-party payment services like Stripe…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales