Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » IaaS


Infrastructure as a Service (IaaS) is a cloud computing service that provides customers with access to computing infrastructure (such as servers, storage, and networking) on a pay-per-use basis. IaaS enables customers to rent or lease infrastructure resources on an as-needed basis rather than purchase and maintain their in-house infrastructure.

With IaaS, customers can scale their infrastructure up or down as needed, depending on their changing needs and requirements. This can be more cost-effective than maintaining in-house infrastructure, as customers only pay for the resources they consume.

IaaS is a popular choice for organizations that want to outsource the management and maintenance of their infrastructure to a cloud service provider so that they can focus on their core business.

Additional reading

Data Security Regulations

A Quick Guide to Data Security Regulations

A study by Gartner states that 75% of the world population will have its personal information covered under privacy regulations by 2024. The massive scale at which data is processed today and the growing reliance on technology underscore the pressing need for data security. Data regulations help establish guidelines for sensitive information protection and promote…
Guide to the NYDFS Cybersecurity Regulation

Guide to the NYDFS Cybersecurity Regulation

In Gov. Cuomo’s words: “This regulation helps ensure that  the financial services organizations in the industry fulfill its obligation to safeguard consumers and ensure that its systems are sufficiently constructed to avert cyber-attacks to the fullest extent possible.” The New York State Department of Financial Services (NYDFS) released the NYDFS Cybersecurity Regulation (23 NYCRR 500)…
iso 27001 asset management

ISO 27001 Annex A.8 – Asset Management

As per the definition and application of ISO 27001 asset management, it is a set of processes to identify and apply security measures to an organization’s assets. Seems straightforward, isn’t it? In the real world, it is pretty tricky. Often organizations forget to identify and secure chunks of confidential Information stored at multiple sources. The…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.