Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
Deterrent Controls
Deterrent controls are administrative mechanisms (such as policies, standards, procedures, laws, guidelines, and regulations) that are used to advise the execution of security within an enterprise.
Additional reading
NIST vs ISO 27001 Compliance: What’s the Difference?
NIST and ISO 27001 are two of the most sought after compliance certifications in the market today. While ISO/IEC 27001 takes a comprehensive approach to information security management, NIST sets the standards for information security, develops new technologies, and provides metrics to drive innovation and industrial competitiveness. So which among these standards suits you best?…
Comparing FedRAMP and NIST: What’s the Difference?
TL,DR: NIST SP 800-53 is a security controls catalog for federal systems under FISMA containing 20 control families. FedRAMP applies those same controls specifically to cloud service providers seeking to serve federal agencies FedRAMP builds on NIST 800-53 by adding cloud-specific requirements, mandatory third-party assessment by accredited 3PAOs, and a standardized authorization process that federal…
Bypassing MFA: Learnings from the biggest MFA breaches of all times
Quick question: If we secure an asset with a password that only the intended user should know, add security questions that only they can answer, confirm their identity through something only they could possess—like their smartphone—and even layer on security tokens or smart cards, we should be airtight, right? Wrong! 78% of companies use MFA,…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
