<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1977396509252409&amp;ev=PageView&amp;noscript=1">

SUITE OF SERVICES services menu

Hamburger-menu.png
MobileSearchIcon.png

FEDERAL ASSESSMENTS

FedRAMP, CMMC / NIST SP 800-171, FISMA / NIST, ITAR, CJIS Assessments

TALK WITH A SPECIALISTRESOURCES

Federal_Assessments

While many 3PAOs are historical government contractors and consultants, Schellman provides only independent assessment services to cloud providers. Additionally, our clients often work in conjunction with SOC 2, PCI, and other compliance initiatives.

 

FedRAMP

Schellman is an accredited 3PAO in accordance with the FedRAMP requirements. FedRAMP is a program that allows cloud service providers to meet security requirements so agencies may outsource with confidence.

LEARN MORE

CMMC / NIST SP 800-171

* Schellman’s application for C3PAO is pending as no C3PAOs have been accredited to date.

In the meantime, Schellman is able to perform gap assessments using NIST 800-171 along with the additional CMMC requirements (practices and processes) so that an organization can gauge is preparedness for CMMC certification.

LEARN MORE

FISMA/NIST

While only government agencies can be FISMA compliant, Schellman performs both independent attestations and gap assessments against the NIST 800-53 standards, which are the detailed requirements behind FISMA.

LEARN MORE

ITAR

Schellman regularly performs assessments against the applicable controls for the International Trafficking of Arms Regulation (ITAR) and other types of export control requirements.

LEARN MORE

CJIS

Schellman regularly performs assessments against the applicable controls for the Criminal Justice Information Services (CJIS) Security Policy found on the FBI website

LEARN MORE