The Schellman Blog | Schellman (11)

Contact Us

Services

Suite of Services

Schellman began as a SOC audit firm 20+ years ago. While we still issue more than 2,000 SOC reports each year, our clients’ trust has propelled our expansion. Today, we offer nearly 60 types of audits and assessments.

Download a PDF of All Services

Learning Center

About Us

About Us

Schellman is the only Top 50 CPA firm focused exclusively on IT Compliance and Cybersecurity, and we’re the #1 service provider for FedRAMP Assessments. Our industry-leading NPS scores, client retention, and employee retention mean our clients experience greater continuity and quality.

Download the Story of '24

ISO Certificate Directory

Services

Services

View All Services

SOC & Attestations

SOC & Attestations

SOC 1 / SSAE 18 Examination

SOC 2 Examination

SOC 3 Examination

SOC for Supply Chain

SOC for Cybersecurity

SOC Essentials for Early-Stage Companies

C5 Attestation

CSA STAR Programs

Payment Card Assessments

Payment Card Assessments

PCI DSS Validation

PCI SSF

PCI P2PE Validation

PCI PIN Assessments

PCI 3DS Compliance

ISO Certifications

ISO Certifications

ISO 27001

ISO 42001

ISO 27701

ISO 9001

ISO 22301

ISO 20000-1

ISO 14001

ISO 45001

ISO 50001

Privacy Assessments

Privacy Assessments

Global CBPR & PRP Certification

GDPR Assessment

International Privacy Assessments

US State Privacy Assessments

Microsoft SSPA/DPR Assessment

FERPA Assessment

EU Cloud Code of Conduct

Federal Assessments

Federal Assessments

FedRAMP®

CMMC / NIST SP 800-171

FISMA/NIST

ITAR

CJIS

IRAP

FTC Consent Decrees

DoD IL6

Healthcare Assessments

Healthcare Assessments

HITRUST Certification

HIPAA Compliance

HIPAA Express

EPCS-DEA Audits

Health Data Host (HDS) Certification

Penetration Testing

Penetration Testing

Application

Network

Mobile

Red Teaming

Social Engineering

Cloud

Physical

Hardware and IoT

Advanced Series

AI Red Teaming

Cybersecurity Assessments

Cybersecurity Assessments

Cloud Configuration Assessments

Ransomware Assessments

NIST Cybersecurity Framework Assessments

Schellman Software Security Assessment (S³A)

TISAX®

SWIFT Customer Security Programme

Internal Audit Co-Sourcing

MTCS Certification

Crypto and Digital Trust

Crypto and Digital Trust

Schellman Training

Schellman Training

Sustainability Services

Sustainability Services

AI Services

Learning Center

About Us

About Us

Leadership Team

Leadership Team

Corporate Social Responsibility

Corporate Social Responsibility

Careers

Strategic Partnerships

Strategic Partnerships

ISO Certificate Directory

The Schellman Blog

Stay up to date with the latest compliance news from the Schellman blog.

Schellman

Schellman is a leading provider of attestation and compliance services. We are the only company in the world that is a CPA firm, a globally licensed PCI Qualified Security Assessor, an ISO Certification Body, HITRUST CSF Assessor, a FedRAMP 3PAO, and most recently, an APEC Accountability Agent. Renowned for expertise tempered by practical experience, Schellman's professionals provide superior client service balanced by steadfast independence. Our approach builds successful, long-term relationships and allows our clients to achieve multiple compliance objectives through a single third-party assessor.

Blog Feature

News | SchellmanLife

Schellman Expands Service Offerings with Launch of ESG Assurance Practice and New Practice Leader

By: Schellman
May 2nd, 2023

Leading provider of attestation and compliance services strengthens commitment to sustainability by helping clients measure, report, and manage their ESG performance with the addition of an experienced leader.

Blog Feature

SOC Examinations

How to Read Your SOC Report

By: Schellman
April 27th, 2023

If you’ve just completed your first SOC examination and received your final report, you might be confused about what you’re looking at. As a seasoned SOC assessor firm with over two decades of experience, we’ve provided thousands of organizations with a SOC report, and we want to help you avoid any potential confusion over the contents.

Blog Feature

Healthcare Assessments

HIPAA Privacy Rule Changes for 2023

By: Schellman
April 20th, 2023

Someone once said that "a marathon is hundreds of miles. The finish is the last 26.2." Maybe that “someone” worked at the Office of Civil Rights (OCR) because they are coming to the “finish” at the end of their latest marathon, though it’ll still take some work and time to get over the line.

Blog Feature

Healthcare Assessments

A Breakdown of Recent HIPAA Compliance Issues and Breaches

By: Schellman
April 11th, 2023

You’ve likely heard the phrase “those who cannot remember the past are condemned to repeat it”—or at least something like it, and the sentiment is true. It’s incredibly helpful to understand what pitfalls or stumbles occurred in the past so that the same traps aren’t fallen into, and it’s even more helpful when someone compiles a list of those pitfalls that more easily lay them all out.

Blog Feature

Healthcare Assessments

Prepare for a HIPAA Assessment: A Guide for Healthcare Organizations

By: Schellman
March 28th, 2023

All of us likely remember hearing something like this from our parents: “when I come in there, your room better be clean!”

Blog Feature

Healthcare Assessments

The Timeline for HITRUST CSF v11

By: Schellman
February 28th, 2023

Famed poet Ralph Waldo Emerson said, “every sunset brings the promise of a new dawn.”

Blog Feature

Healthcare Assessments

HITRUST CSF v11: An Overview of the Update

By: Schellman
February 16th, 2023

“New year, new me!”

Blog Feature

Cybersecurity Assessments | Compliance and Certification

5 Steps to Help You Prepare For Your Compliance Audit

By: Schellman
February 2nd, 2023

So you’ve committed to an audit. Your customers were asking, or maybe a new regulation came into effect that your organization is now subject to—whatever the reason was, you’ve got to get audited because your audit team is confirmed.

{

Previous All posts Next