<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1977396509252409&amp;ev=PageView&amp;noscript=1">
Contact a Specialist
Industry Solutions
Industry Solutions
Cloud Computing & Data Centers
Cloud Computing & Data Centers
Financial Services & Fintech
Financial Services & Fintech
Healthcare
Healthcare
Payment Card Processing
Payment Card Processing
US Government
US Government
Learning Center
Learning Center
Articles
Articles
Whitepapers
Whitepapers
Case Studies
Case Studies
Events & Live Webinars
Events & Live Webinars
On-Demand Webinars
On-Demand Webinars
Compliance Reliance
Compliance Reliance
About Us
About Us
Leadership Team
Leadership Team
Careers
Careers
Corporate Social Responsibility
Corporate Social Responsibility

Blog

The Schellman Advantage Blog

Stay up to date with the latest compliance news from the Schellman Advantage blog.

DANNY MANIMBO

Danny Manimbo is a Principal with Schellman based in Denver, Colorado. As a member of Schellman’s West Coast / Mountain region management team, Danny is primarily responsible for co-leading Schellman's ISO practice as well as the development and oversight of Schellman's SOC practice line as well as specialty practices such as HIPAA. Danny has been with Schellman for eight years and has over 11 years of experience in providing data security audit and compliance services.

Blog Feature

ISO 27001 / 27002 | ISO Certifications | ISO 27002

By: DANNY MANIMBO
March 16th, 2022

Chances are, if you know anything about our space program, you know that when we send a manned mission beyond our atmosphere, those astronauts remain in constant communication with their fellows back at Mission Control.

Blog Feature

SchellmanCARES

By: DANNY MANIMBO
June 23rd, 2021

Our Story Many who know me have also probably met my two-year-old twins, Everly and Porter (a girl and a boy). Over this past year, many others have probably witnessed my kids charging into my office to make several, mostly surprise, appearances during Zoom happy hours and client meetings. But what most do not know, however, are the struggles my wife, Brittany, and I went through on our journey to have them. How we got to this point with two happy, healthy children is not a short story or answer—as anyone affected knows, infertility can create so many hardships for couples, and I hope that this blog and our fundraising campaign detailed below will shed some light on the widespread impact it really can have.

Blog Feature

SOC | ISO 27001 / 27002

By: DANNY MANIMBO
September 6th, 2016

With the rising popularity of compliance efforts today driven by factors such as customer demands, regulatory requirements, and/or a company’s willingness to demonstrate their internal control environment to external parties, the question often arises as to which compliance undertaking is the most beneficial for organizations to undergo. Lately, we’ve noticed a large surge in both our SOC 2 and ISO 27001 service lines, but which is the better for your organization? To begin to tackle this question, it’s important to first get some background information on both SOC 2 and ISO 27001 to understand their differences, similarities, and how they could potentially complement each other.

Blog Feature

SOC

By: DANNY MANIMBO
January 21st, 2016

Service Organization Controls (SOC) reports help companies establish trust and confidence in their service delivery processes and controls. The reports are administered by an independent third party that must be a certified public accountant (CPA). The process of choosing the correct report among the three can be confusing task. That’s why we’ve broken it down for you, to help with your decision process.

Blog Feature

By: DANNY MANIMBO
March 2nd, 2015

When conducting an audit, an auditor must obtain an understanding of a client’s internal control environment, including the use, applicability and nature of any manual and automated controls, in order to design appropriate procedures to test such controls.

Blog Feature

By: DANNY MANIMBO
January 5th, 2015

During the course of an audit, there are instances when findings can come to the auditor’s attention. If the finding is discovered prior to the report date (Type 1 reports) or end of the report period (Type 2 reports), a client will have the opportunity to remediate the finding.

Blog Feature

SOC

By: DANNY MANIMBO
December 8th, 2014

From a compliance standpoint, documented policies and procedures are very important and can sometimes be required, depending on the scope of services Schellman is providing.

Blog Feature

HIPAA

By: DANNY MANIMBO
May 5th, 2014

The HIPAA Omnibus Rule which took effect on September 23, 2013, has led to the evolution of the HIPAA Compliance environment. Now more than ever it is important to understand what the security and privacy obligations are of a business associate (BA) or a subcontractor of a BA. BA’s are now mandated to comply with the HIPAA Privacy and Security rule requirements. Below are some high level requirements that BA’s need to be aware of when assessing their compliance environment: