Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » NIST » NIST Cybersecurity Framework (CSF)

NIST Cybersecurity Framework (CSF)

The NIST Cybersecurity Framework (CSF) is a set of best practices that organizations can use to safeguard their data and enhance cyber security. Developed by the National Institute of Standards and Technology (NIST), the framework helps organizations protect critical infrastructure, such as healthcare and manufacturers. 

NIST CSF is flexible, adaptable and widely used to benchmark cybersecurity practices. The framework is built around five core functions: Identify, Protect, Detect, Respond, and Recover. These functions guide the organization’s efforts to strengthen their defenses, improve incident response and ensure resilience in the face of evolving threat landscape.

  • Identify: It involves developing an understanding of the organization’s environment to manage risks
  • Protect: It focuses on implementing protective measures to safeguard the delivery of critical services
  • Detect: It aims to identify the occurrence of cybersecurity events in a timely manner through monitoring and detection processes
  • Respond: It involves developing and implementing an action plan when a cybersecurity event occurs to minimize the spread and impact
  • Recover: It focuses on implementing measures to restore the services impacted by an incident as quickly as possible to ensure business continuity. 

Additional reading

SOC 2 Compliance Cost 2026: Planning A Comprehensive Compliance Budget

SOC 2 Certification Cost : Quick Snapshot SOC 2 certification cost varies widely, but most companies spend between $30,000 and $150,000 to complete the process, depending on audit scope, organization size, auditor choice, and readiness level. Type 1 audits typically range from $5,000–$25,000, while Type 2 audits — which require testing controls over time — often fall between $7,000–$50,000+….

HIPAA Compliance Automation: How to get started

Cybersecurity is a complex yet crucial system that requires clearly defined rules, limitations, regulations, and methodologies. Some people view compliance requirements as an obligation. But compliance, according to the majority of industry experts, is the key to being competitive, avoiding destabilizing attacks, traversing cyberspace, and giving your clients the cybersecurity they deserve. One such compliance…

Honest Delve Review 2026: Features, Pricing, Pros & Cons

TL;DR Built for first-time certifications, not recurring programs: Delve is fast and intuitive for SOC 2 or ISO 27001 first-timers, but teams managing multiple frameworks or complex governance structures will hit its ceiling. Pricing isn’t published and can surprise you: All quotes are custom, and community reports suggest costs can reach $12,000/year even for sub-10-person…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales