Blog

One of the questions that we get the most often when we're talking about Federal assessments is how long does it take to get through the assessment process and what happens afterward to actually get to FedRAMP authorization?

So what's the relationship between ISO 27001 and ISO 27002?

So you're looking to achieve a CMMC certification. In this video, we will cover the

So you're a certified organization, and you're considering switching certification bodies, but want to know more about what that process looks like and whether or not you're eligible to do so. In this video, we'll discuss how this process, what's referred to as its certification transfer works including the eligibility requirements and cooperation that needs to be in place amongst the various parties involved.

The PCI SSC recently released the MPoC standard or the Mobile Payments on Commercial off-the-shelf devices.

So you're here because you need a federal assessment or you want to pursue a federal assessment and you're not sure where to start. There are a myriad of options. So today we're going to discuss what those options are to hopefully better define your roadmap and determine what makes sense for you and your organization. Hi, I'm Marci Womack. I'm a federal services practice leader here at Schellman. We've been doing federal assessments, going on 10 years and do hundreds of these annually. We often talk to organizations who are either in the federal space or want to pursue opportunities in the federal space. And there are many assessment and compliance opportunities that they don't know which one makes sense for their organization. Our goal today is to outline what some of those frameworks are and what the options you have depending on the services that you provide to your customers or the types of data that you're handling on behalf of your customers. So the few different options of federal services or federal assessments that are available to you, one of the hot topics is: