The Schellman Blog

For anyone who wants to expand their skills on red teaming with advanced OPSEC tactics and defense bypass techniques, Red Team Ops II (RTO II) is a great course among the many different exams and certifications a cybersecurity professional might invest in to advance their knowledge—and their careers.

In the digital marketplace, certification authorities (CA) play an important role as trust anchors on the Internet—their primary goal is to establish confidence, confidentiality, integrity, and authentication during various digital communication and transaction scenarios, enabling secure interactions and protecting sensitive information. But that makes it imperative that these CAs remain trustworthy themselves, and in this, WebTrust audits can help.

Now that we're in the middle of Disability Pride Month, Schellman is proud to announce the official launch of SchellmanABLE, an Employee Advocacy Group (EAG) that has been a long time in the making.

TAMPA, FLA. – July 26, 2023 – Schellman, a global leader in attestation and compliance services, today announced the appointment of Jennifer Walsh as the company's new Chief Financial Officer. With her exceptional expertise in financial and operational initiatives, Walsh is set to spearhead Schellman's financial strategy and shape a future of unparalleled growth and success.

While most healthcare providers don’t recognize that managing and securing payment data follows the same notions as managing and securing protected health information (PHI), from concept to implementation, these can, and should, work hand in hand.

As cybersecurity practices go, you have a lot of options, with penetration testing being just one of them. However, a penetration test has more value than many may initially recognize—in addition to how they serve your compliance initiatives.

In news that’s excited the privacy industry worldwide—the EU – U.S. Data Privacy Framework (DPF) was announced on Monday, July 10, 2023, and took near immediate effect. This comes after months of review and public comment, but now, with the DPF functioning as a new adequacy mechanism under General Data Protection Regulation (GDPR), organizations can once again transfer data under an adequacy decision if they adhere to and self-certify against the DPF.

If you’re a healthcare organization, you likely understand that third-party risk management (TPRM) remains a significant challenge.