Contact Us

Services

Suite of Services

Schellman began as a SOC audit firm 20+ years ago. While we still issue more than 2,000 SOC reports each year, our clients’ trust has propelled our expansion. Today, we offer nearly 60 types of audits and assessments.

Download a PDF of All Services

Learning Center

Our Technology

About Us

About Us

Schellman is the only Top 50 CPA firm focused exclusively on IT Compliance and Cybersecurity, and we’re the #1 service provider for FedRAMP Assessments.Our industry-leading NPS scores, client retention, and employee retention (low-to-no team churn = less audit fatigue) mean our clients experience greater continuity and quality.We also understand how distracting unplanned work can be, so we focus on client-centric KPIs to help keep your business moving uninterrupted.

Download the Story of '24

ISO Certificate Directory

Services

Services

View All Services

SOC & Attestations

SOC & Attestations

SOC 1 / SSAE 18 Examination

SOC 2 Examination

SOC 3 Examination

SOC for Supply Chain

SOC for Cybersecurity

SOC Essentials for Early-Stage Companies

C5 Attestation

CSA STAR Programs

Payment Card Assessments

Payment Card Assessments

PCI DSS Validation

PCI SSF

PCI P2PE Validation

PCI PIN Assessments

PCI 3DS Compliance

ISO Certifications

ISO Certifications

ISO 27001

ISO 42001

ISO 27701

ISO 9001

ISO 22301

ISO-20000-1

Privacy Assessments

Privacy Assessments

APEC Certification

GDPR Assessment

International Privacy Assessments

US State Privacy Assessments

Microsoft SSPA/DPR Assessment

Privacy Program Assessment

FERPA Assessment

EU Cloud Code of Conduct

Federal Assessments

Federal Assessments

FedRAMP®

CMMC / NIST SP 800-171

FISMA/NIST

ITAR

CJIS

IRAP

FTC Consent Decrees

DoD IL6

Healthcare Assessments

Healthcare Assessments

HITRUST Certification

HIPAA Compliance

HIPAA Express

EPCS-DEA Audits

Health Data Host (HDS) Certification

Penetration Testing

Penetration Testing

Application

Network

Mobile

Red Teaming

Social Engineering

Cloud

Physical

Hardware and IoT

Advanced Series

Cybersecurity Assessments

Cybersecurity Assessments

Cloud Configuration Assessments

Ransomware Assessments

NIST Cybersecurity Framework Assessments

Schellman Software Security Assessment (S³A)

TISAX®

SWIFT Customer Security Programme

Internal Audit Co-Sourcing

Crypto and Digital Trust

Crypto and Digital Trust

Schellman Training

Schellman Training

Sustainability Services

Sustainability Services

AI Services

Learning Center

Our Technology

About Us

About Us

Leadership Team

Leadership Team

Corporate Social Responsibility

Corporate Social Responsibility

Careers

Strategic Partnerships

Strategic Partnerships

ISO Certificate Directory

Blog

Video

Stay up to date and discover new insights into compliance through our team’s thought leadership.

Danny Manimbo

Danny Manimbo is a Principal with Schellman based in Denver, Colorado. As a member of Schellman’s West Coast / Mountain region management team, Danny is primarily responsible for leading Schellman's AI and ISO practices as well as the development and oversight of Schellman's attestation services. Danny has been with Schellman for 10 years and has over 13 years of experience in providing data security audit and compliance services.

Blog Feature

ISO Certifications | ISO 27001

An Overview of ISO 27001: Key Principles, Benefits, and Implementation

By: Danny Manimbo
April 16th, 2025

Danny Manimbo, Principal and ISO Practice Leader at Schellman, provides a comprehensive overview of ISO 27001 Certification.

Blog Feature

ISO Certifications | ESG

ISO 14001: The Most Frequently Asked Questions

By: Danny Manimbo
March 20th, 2025

Danny Manimbo, Principal and ISO & AI Practice Leader at Schellman, is here to answer the most frequently asked questions surrounding ISO 14001 Certification.

Blog Feature

ISO Certifications | Artificial Intelligence | ISO 42001

ISO 42001: Frequently Asked Questions

By: Danny Manimbo
February 24th, 2025

Danny Manimbo, Principal and ISO & AI Practice Leader at Schellman, is here to answer the most frequently asked questions surrounding ISO 42001 Certification.

Blog Feature

ISO Certifications

The Relationship Between ISO 27001 and 27002

By: Danny Manimbo
July 12th, 2023

So what's the relationship between ISO 27001 and ISO 27002?

Blog Feature

ISO Certifications

How Does the ISO Certification Transfer Process Work?

By: Danny Manimbo
June 28th, 2023

So you're a certified organization, and you're considering switching certification bodies, but want to know more about what that process looks like and whether or not you're eligible to do so. In this video, we'll discuss how this process, what's referred to as its certification transfer works including the eligibility requirements and cooperation that needs to be in place amongst the various parties involved.

Blog Feature

ISO Certifications

Schellman's ISO Capabilities

By: Danny Manimbo
March 2nd, 2023

Blog Feature

ISO Certifications

Changing Your Scope AFTER ISO Certification

By: Danny Manimbo
June 23rd, 2022

So you're ISO certified, but you want to make some changes to the scope of your certification, can you do it? Do you have to wait until the certification review three years down the road? In this video, we're going to talk about some of the considerations when clients or organizations want to make changes to the scope of their certification.

Blog Feature

ISO Certifications

How Much Does an ISO Certification Cost?

By: Danny Manimbo
April 18th, 2022

{