Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » SAS 70

SAS 70

SAS 70 is a standard developed by the American Institute of Certified Public Accountants (AICPA) to evaluate the security controls of service organizations. It guides them and their auditors to demonstrate the effectiveness of their controls to their clients and their clients’ auditors.

SAS 70 is currently replaced by the Statement on Standards for Attestation Engagements (SSAE) 18, which is the current standard for evaluating the controls of service organizations. While the SSAE 18 standard includes the same types of evaluations as SAS 70, it is updated to align with current industry best practices and to reflect changes in technology and the business environment.

Today, SOC 2 audits follow the SSAE 18 standard rather than SAS 70.

Additional reading

7 Best NIST Compliance Software

NIST isn’t your typical regulatory framework. Companies aren’t mandated to become NIST compliant unless they’re part of the US federal system. This also means it can be pretty challenging to implement without understanding what to do and how to streamline the flurry of activity involved. And this is where NIST compliance software can help. But…

Top Cloud Compliance Tools You Should Know

Congratulations on getting here. I’m talking about your evaluation journey for cloud compliance tools. It means your company has reached a scale where managing compliance with legacy practices and in-house systems is a headache. So, a pat on your back for scaling to where you are and having a healthy headache to solve for. There…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.