Glossary of Compliance
Compliance Glossary
Our list of curated compliance glossary offers everything you to know about compliance in one place.
Subcontractor
A subcontractor is a third-party entity that a primary contractor hires to carry out particular cybersecurity-related services or tasks on the contractor’s behalf. Services like penetration testing, vulnerability assessments, and incident response may fall under this category.
Additional reading
How to Automate Third-Party Risk ManagementΒ
Today, every business is a network of networks. With each new connection comes a new surface of risk. Your vendors might host sensitive data, process payments, handle customer transactions, or run a critical API. Any weakness in their system becomes a liability in yours. If they fail, your team must answer to regulators, customers, and…
From Automation to Intelligence: How AI Is Rewriting GRC
Thereβs so much noise, hype, and rapid movement surrounding AI in GRC that it’s easy to get lost in the headlines. Thatβs why we brought together two of the industry’s most respected security leadersβDiana Kelley, CISO at NOMA Security and former CTO at Microsoft, and SKI(Senthil Kumar Ayyapan), an award-winning GRC executive and CISO at…
List of NIST access control requirements
Ensuring adequate security of information systems is a fundamental management responsibility for every organization. Every organization that deals with financial, safety, privacy, or defense implements some form of access (authorization) control. Although some systems grant complete access after successful authentication of the user, most systems nowadays require more sophisticated and complex control. In addition to…
Sprinto: Your growth superpower
Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.
