Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » NIST » NIST CSF 2.0

NIST CSF 2.0

NIST Cybersecurity Framework (CSF) 2.0 is an update to NIST CSF  framework.  It expands principles of NIST CSF and adds more structured guidance on minimizing cybersecurity risks. It encompasses organizations of all sizes, irrespective of their security maturity.

After the successful debut of the NIST CSF in 2014 and adoption by 50% of US-based organizations just after 6 years of release, NIST started working on NIST CSF 2.0 in 2022. The CSF 2.0 was released in February 2024 to include not just critical infrastructure sectors but also businesses ranging from schools and startups to enterprise and government organizations.

NIST CSF 2.0 also has a lot of informative references for better adoption and supports integration with other risk programs. reflecting the rapidly changing digital landscape and serving as a comprehensive tool for organizations to strengthen their cybersecurity defenses.

Additional reading

enterprise risk management

Enterprise Risk Management: A Strategic Approach to Managing Risk

As companies grow, so do their operational complexity, customer bases, and the amount of data they process on a daily basis. These bring in unprecedented risks—enterprises need to process a larger amount of data, disclose and uphold data subject rights, and keep all of this data safe from internal and external threats. This means their…

7 Best PCI DSS Auditors in 2025

A PCI audit is a thorough examination of a merchant’s compliance with PCI DSS requirements and is done by PCI DSS auditors. It includes numerous individual controls or safeguards for protecting cardholder information (such as the primary account number, CAV/CID/CVC2/CVV2, and other types), as well as systems that interact with payment processing. To conduct an…
gdpr article 9

Simplifying Article 9 of GDPR – guide to processing special category data

Have you come across consent prompts for cookie collection while surfing the internet? That results from tightening data privacy regulations like Article 9 of GDPR, which push businesses to take privacy more seriously.  These regulations mandate businesses to offer more control to users over how their data gets used and make it easier for them…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales