Schellman is a leading provider of attestation and compliance services. We are the only company in the world that is a CPA firm, a globally licensed PCI Qualified Security Assessor, an ISO Certification Body, HITRUST CSF Assessor, a FedRAMP 3PAO, and most recently, an APEC Accountability Agent. Renowned for expertise tempered by practical experience, Schellman's professionals provide superior client service balanced by steadfast independence. Our approach builds successful, long-term relationships and allows our clients to achieve multiple compliance objectives through a single third-party assessor.
Artificial Intelligence | HITRUST | ISO 42001
By:
Schellman
May 14th, 2025
Schellman's Danny Manimbo and Senior Associate within the AI practice, Jerrad Bartczak, discuss what you need to know about the overlap between HITRUST AI Security Assessment and ISO 42001 and how to map the two frameworks.
By:
Schellman
March 5th, 2025
Schellman's Danny Manimbo and Senior Associate - AI, Jerrad Bartczak, discuss what you need to know about South Korea's AI Basic Act.
By:
Schellman
February 17th, 2025
As sustainability disclosure requirements are constantly evolving, it’s increasingly important for businesses to remain aware of these changes and prepare to comply. While the sustainability disclosure regulatory requirements typically impact larger companies, we are starting to see mid- and small-cap companies that typically operate as business-to-business suppliers be impacted by a new trend in this space. Larger, international companies are starting to update their Supplier Code of Conduct to require the measurement of GHG emissions, setting of climate targets, and procuring electricity from renewable energy sources.
By:
Schellman
December 18th, 2024
Hi, I'm Stu Block the Sustainability Practice Director here at Schellman. We provide our clients with sustainability services in three primary areas. 1. Sustainability Regulatory Reporting Readiness
Cybersecurity Assessments | ISO Certifications | Artificial Intelligence
By:
Schellman
December 12th, 2024
Looking back, 2024 was the year of AI governance. At Schellman, we dove in headfirst and became the first ANAB ISO 42001-accredited Certification Body. We also started to see AI regulation come online internationally with the EU AI Act, as well as here in the U.S., where certain states also published their own AI regulation. While we're still lacking federal-level legislation—which may still come in the future—we also anticipate that this state-by-state patchwork of AI laws will expand.
By:
Schellman
November 6th, 2024
Let's talk about GHG emissions and how they are reported according to the Greenhouse Gas Protocol by categorizing them into three scopes. Scope 1 GHG Emissions
By:
Schellman
October 23rd, 2024
Payment, script, security, controls. Did any of those make you feel warm and fuzzy? Probably not.
ISO Certifications | Artificial Intelligence
By:
Schellman
October 1st, 2024
As one of the largest cybersecurity assessment firms in the world, Schellman provides services like ISO, FedRAMP, SOC, and PCI. In parallel with the compliance and technology space that continues to evolve, we've adapted our ISO services, including acquiring dual accreditation from ANAB and UKAS to meet the ever-evolving needs of our clients.
Cybersecurity Assessments | Compliance and Certification
By:
Schellman
September 25th, 2024
(Schellman CEO) Avani Desai here. Let's talk about something that can make or break your business...DORA. Otherwise known as the Digital Operational Resilience Act, DORA is set to redefine how financial institutions and their critical third-party providers manage digital threats.
By:
Schellman
September 18th, 2024
If you’ve not yet heard, the NIS2 Directive—an increasingly critical cybersecurity regulation for organizations across the EU—is set to go into effect on October 17th. That means that Member States must adopt and publish the necessary cybersecurity measures by October 17, 2024, and apply them from October 18, 2024, onward—so, is your organization ready?