Start Simplifying
Industry Solutions
Industry Solutions
Cloud Computing & Data Centers
Cloud Computing & Data Centers
Financial Services & Fintech
Financial Services & Fintech
Healthcare
Healthcare
Payment Card Processing
Payment Card Processing
US Government
US Government
Learning Center
Learning Center
Articles
Articles
Whitepapers
Whitepapers
Case Studies
Case Studies
Events & Live Webinars
Events & Live Webinars
On-Demand Webinars
On-Demand Webinars
Schellman Training
Schellman Training
About Us
About Us
Leadership Team
Leadership Team
Careers
Careers
Corporate Social Responsibility
Corporate Social Responsibility

Blog

The Schellman Advantage Blog

Stay up to date with the latest compliance news from the Schellman Advantage blog.

Blog Feature

SOC 2 | Privacy | TSC

By: RYAN BUCKNER
August 2nd, 2022

If you’ve ever dieted before, you know the temptation to add something extra to your meal—you know, something actually tasty, or just something else that you believe will satisfy a craving.

Blog Feature

SOC 2 | SOC Reports | SOC 1

By: Erica Green
July 7th, 2022

When you consider your spice cabinet, it probably contains a lot of different things—salt, pepper, garlic powder, paprika, etc.

Blog Feature

SOC 2 | SOC Reports | SOC 1

By: Jose Benevidez
June 30th, 2022

“Your problem is to bridge the gap which exists between where you are now and the goal you intend to reach.”

Blog Feature

SOC 2 | SOC Reports | SOC 1 | Remediation

By: NICK BRUCE
May 31st, 2022

Former President John F. Kennedy once said that “an error does not become a mistake until you refuse to correct it.”

Blog Feature

SOC 2 | SOC Reports | SOC 1

By: Hiren Patel
May 26th, 2022

Do you remember how, in grade school gym class, there was a tradition of picking teams to play games? 

Blog Feature

SOC 2 | SOC Reports

By: Fred Hood
May 19th, 2022

“The beginning is the most important part of the work.”

Blog Feature

SOC 2 | HITRUST | NIST SP 800-Series | CSA STAR

By: Craig Skinner
May 4th, 2022

Think about those a la carte sushi restaurants—the very cool ones with the circulating conveyor belts that let you select different dishes as they suit your fancy. Maybe your go-to is always California rolls, but you spot some delicious-looking Rainbow Rolls so you grab those one time. Or maybe you’re craving a Spicy Tuna roll, so you add that to your plate. Even if sushi is not quite your taste, you’d probably agree that SOC 2 audits are even less appetizing. Aside from the actual, in-depth audit process, they also require you to make a lot of decisions first, and it’s just added stress. That’s why you want to ensure that you take the audit path most helpful to you, and that includes the right criteria. SOC 2 functions a lot like that sushi conveyor belt—you have a lot of potential options. And we don’t just mean the SOC 2 Trust Services Categories (TSCs) that you have to select from to form the basis of your examination. We mean adding what is technically known as additional “subject matter.” For simplicity’s sake, we’ll just refer to it as “additional criteria.”

Blog Feature

SOC 2 | SOC | SOC Reports | SOC 1

By: NICK BRUCE
April 26th, 2022

Matters of opinion can be pretty contentious.