Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » PCI DSS » XSS

XSS

Cross-Site Scripting (XSS) is a security vulnerability which allows a cyber threat actor to inject malicious code into a web page viewed by other users to steal their sensitive information or perform unauthorized actions. The attacker exploits the vulnerabilities in the website’s code and then injects scripts that can be executed in the website users’ browsers. The cyber threat actors use XSS attacks to steal login credentials, credit card details, session tokens, and more to perform fraudulent activities.

Additional reading

Information Security Policy – Everything You Should Know

TL,DR: An information security policy lays the foundation for protecting an organization’s data assets by defining procedures, techniques, and technology for safeguarding confidentiality, integrity, and availability ISO 27001 requires the policy to have management buy-in and mandates that it be shared with all staff. Annex 5 of the standard sets the objectives and must-haves for…

SOX Controls: A Practical Guide

SOX compliance is rarely viewed as inspiring, but it should be. The Sarbanes-Oxley Act, now more than 20 years old, has been reduced to a set of rules to follow.  In reality, it’s a proven framework for building durable financial systems and long-term credibility. SOX is fundamentally about trust: the kind that guides investor decisions…

NIS2 Guidelines Broken Down: Non-Negotiable for EU

The risk of large-scale disruptions and data breaches has skyrocketed, exposing vulnerabilities in systems essential to our everyday lives. The NIS2 directive aims to strengthen cybersecurity frameworks and ensure organizations are better prepared to tackle these threats head-on. The Network and Information Systems (NIS) 2 Directive isn’t just another boring compliance checklist. It introduces significant…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales