Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » SOC 2 » SAS 70

SAS 70

SAS 70 is a standard developed by the American Institute of Certified Public Accountants (AICPA) to evaluate the security controls of service organizations. It guides them and their auditors to demonstrate the effectiveness of their controls to their clients and their clients’ auditors.

SAS 70 is currently replaced by the Statement on Standards for Attestation Engagements (SSAE) 18, which is the current standard for evaluating the controls of service organizations. While the SSAE 18 standard includes the same types of evaluations as SAS 70, it is updated to align with current industry best practices and to reflect changes in technology and the business environment.

Today, SOC 2 audits follow the SSAE 18 standard rather than SAS 70.

Additional reading

Mastering Data Center Compliance

Mastering Data Center Compliance: Your Go-to Guide

A data center houses critical infrastructure and client’s sensitive information. More often than not, the client’s auditor seeks assurance that the data center complies with the relevant standards and has appropriate data protection measures. The clients, in turn, inquire about the certifications it possesses and the strength of the data center’s security processes. Ensuring a…

What is Cybersecurity Strategy Due Diligence? How to Automate ?

Are your vendors in line with your security policies and procedures? Do you conduct regular risk assessments of your third and fourth-party vendors to ensure compliance throughout their lifecycle? Organizations are increasingly relying on service providers, third and fourth-party vendors for their day-to-day operations. The adoption of integration to solve for agility, speed, and cost…
ISO 27001 compliance software

10 Best ISO 27001 Compliance Software to Consider

Data security is one of the top areas of focus for companies this year. Implementing strong data security and compliance practices go a long way in helping them avoid operational disruptions or financial losses. ISO 27001 is one of the most common internationally recognized standards focusing on information security.  The latest updates of ISO 27001…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales