The Schellman Blog

The Cybersecurity Maturity Model Certification (CMMC) has officially shifted from proposed framework to an enforceable requirement for organizations supporting the U.S. Department of Defense (DoD). With the Final Rule now in effect and contractual mandates accelerating, defense contractors and subcontractors can no longer treat CMMC as a future initiative.

The Federal Deposit Insurance Corporation Improvement Act (FDICIA) is the backbone of how modern banks manage risk, report financial data, and maintain the trust of the public. In the world of banking, the term FDICIA carries significant weight.

Just when you thought the transition to Version 2.0 of France's Hébergeur de Données de Santé (HDS) — or health data hosting — was almost complete, the certification framework is undergoing another significant update. Following the publication of the Law on Securing and Regulating the Digital Space (SREN) decree on March 24, 2026, a new version of the standard, referred to as HDS v2.1, is now in development.

AI is embedded in hiring decisions, customer service workflows, financial systems, and product development pipelines, among other essential business operations and services. AI undoubtedly comes with enhanced efficiency, scalability, and productivity, but it also brings concerns around risks, bias, transparency, reliability, and security.

As federal agencies increasingly rely on cloud technologies to support mission-critical operations, ensuring those systems meet consistent security standards is essential. The Federal Risk and Authorization Management Program (FedRAMP) provides a standardized approach for assessing, authorizing, and continuously monitoring cloud services used by the U.S. government.

Desai joins a select cohort of entrepreneurial leaders committed to creating lasting impact beyond the boardroom

As organizations scale their use of AI systems in key business processes, customer-facing products, and high impact decisions, the question is no longer whether AI can deliver value, but whether it can be deployed in a way that is reliable, secure, fair, and sustainable over time.

In the ever-changing world of information technology, the biggest topic of discussion is artificial intelligence (AI) and the influence it is having on security, compliance, and the administration of data. However, regarding data, the most important consideration should be how AI will impact our personal health information (PHI).