Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » IaaS

IaaS

Infrastructure as a Service (IaaS) is a cloud computing service that provides customers with access to computing infrastructure (such as servers, storage, and networking) on a pay-per-use basis. IaaS enables customers to rent or lease infrastructure resources on an as-needed basis rather than purchase and maintain their in-house infrastructure.

With IaaS, customers can scale their infrastructure up or down as needed, depending on their changing needs and requirements. This can be more cost-effective than maintaining in-house infrastructure, as customers only pay for the resources they consume.

IaaS is a popular choice for organizations that want to outsource the management and maintenance of their infrastructure to a cloud service provider so that they can focus on their core business.

Additional reading

Vendor Questionnaire: 95+ Questions Across Multiple Domains 

Vendors are more than just service providers—they’re an integral part of your business operations. But here’s the catch: 61% of data breaches now stem from third-party vendors. That’s a stark reminder of the risks tied to vendor relationships. Vendor due diligence questionnaires form a crucial part of your vendor onboarding process. You need to make…

HIPAA Compliant Cloud Storage to Secure Data

TL,DR: Any cloud provider storing or processing ePHI is classified as a HIPAA Business Associate, even if it only handles encrypted data without the decryption key Covered entities must sign a BAA before any ePHI is created, received, or transmitted through the cloud. Using a compliant provider alone does not make your organization compliant Required…

Cyber Hygiene: Maintaining Secure and Healthy Systems

TL,DR: Cyber hygiene means routine security practices that protect networks, devices, and sensitive data. Core controls include passwords, security software, backups, firewalls, MFA, and employee awareness. The article covers cyber hygiene benefits, rollout steps, routine-check fatigue, device sprawl, and executive buy-in. Vint Cerf, one of the internet’s pioneers, is said to have coined the term…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.