Contact a Specialist
Services
SOC & Attestations
Payment Card Assessments
ISO Certifications
Privacy Assessments
Federal Assessments
Healthcare Assessments
Penetration Testing
Cybersecurity Assessments
Crypto and Digital Trust
Schellman Training
ESG & Sustainability
Build Your Compliance Roadmap
Industry Solutions
Cloud Computing & Data Centers Meet a broad range of regulatory and industry compliance mandates for your customers
Financial Services & Fintech Cybersecurity assessments for both the banking industry and the financial service providers
Healthcare Reporting to manage risk and adhere to applicable laws and regulations
Payment Card Processing Validate compliance with the various forms of the PCI DSS
US Government Achieve authorization to work for federal agencies, DoD, and the associated contractor base
View All Industry Solutions
Learning Center
Articles
Whitepapers
Video
Case Studies
Events & Live Webinars
On-Demand Webinars
Schellman Training
Visit the Learning Center
Our Process
About Us
Leadership Team
Careers
Corporate Social Responsibility
Strategic Partnerships
Visit About Us
Services
Services
View All Services
SOC & Attestations
SOC & Attestations
Payment Card Assessments
Payment Card Assessments
ISO Certifications
ISO Certifications
Privacy Assessments
Privacy Assessments
Federal Assessments
Federal Assessments
Healthcare Assessments
Healthcare Assessments
Penetration Testing
Penetration Testing
Cybersecurity Assessments
Cybersecurity Assessments
Crypto and Digital Trust
Crypto and Digital Trust
Schellman Training
Schellman Training
ESG & Sustainability
ESG & Sustainability
Industry Solutions
Industry Solutions
View All Industry Solutions
Cloud Computing & Data Centers
Cloud Computing & Data Centers
Financial Services & Fintech
Financial Services & Fintech
Healthcare
Healthcare
Payment Card Processing
Payment Card Processing
US Government
US Government
Learning Center
Learning Center
Visit the Learning Center
Articles
Articles
Whitepapers
Whitepapers
Video
Video
Case Studies
Case Studies
Events & Live Webinars
Events & Live Webinars
On-Demand Webinars
On-Demand Webinars
Schellman Training
Schellman Training
Our Process
About Us
About Us
About Schellman
Leadership Team
Leadership Team
Careers
Careers
Corporate Social Responsibility
Corporate Social Responsibility
Strategic Partnerships
Strategic Partnerships
Contact a Specialist

Video

Stay up to date and discover new insights into compliance through our team’s thought leadership.

Subscribe
Blog Feature

Payment Card Assessments

The Dangers of Scope Creep for PCI Compliance

By: Sully Perella
February 3rd, 2023

One of the most worrying things that can happen during an assessment is scope creep. The name even sounds scary. In this video, we're going to talk about:

Watch Now
Blog Feature

Federal Assessments | CMMC

How Does an Organization Achieve a CMMC Certification?

By: Marci Womack
January 19th, 2023

Many organizations want to understand how they can pursue a CMMC certification. They're really interested in the standard or they know it's very important to their line of business. And today we're going to talk about the ways that CMMC certification can happen right now. And what we expect in the future.

Watch Now
Blog Feature

Payment Card Assessments

What to Ask Before Hiring a QSA

By: Sully Perella
January 10th, 2023

Watch Now
Blog Feature

What are Significant Changes to Payment Software?

By: Sully Perella
December 7th, 2022

Watch Now
Blog Feature

Payment Card Assessments

Deciding Between PCI DSS or SSLC When Evaluating Software Development

By: Sully Perella
December 1st, 2022

If you are a software developer and you want to be assessed against the PCI-DSS, maybe the secure software lifecycle under the SSF is a better choice for you. Let's talk about why.

Watch Now
Blog Feature

HITRUST | Healthcare Assessments

What is the HITRUST Risk-based 2-Year (r2) Certification Process?

By: DOUG KANNEY
November 23rd, 2022

Watch Now
Blog Feature

Payment Card Assessments

What is a Critical Security Control Failure?

By: Sully Perella
November 4th, 2022

Critical security control failure. It's a whole lot of words. What does this mean? How does this apply to your organization? Well, we here at Schellman are well aware of these requirements. Stay tuned.

Watch Now
Blog Feature

Penetration Testing

How Often Should You Have a Penetration Test Performed?

By: JOSH TOMKIEL
October 11th, 2022

So you're interested in having a penetration test performed and you're wondering, is one enough for five years? Do I have to do it weekly or monthly? In this video, we'll talk about how frequently you should have a test performed.

Watch Now
Blog Feature

FedRAMP | Federal Assessments

The Phases to the FedRAMP Process

By: Douglas Barbin
October 5th, 2022

You're a cloud service provider and you want to do work for the federal government. In order to do that though, you need to be FedRAMP authorized and you've been told by the government agency that you're trying to sell to that, you need to be FedRAMP authorized. In this short video, we're going to walk you through what the process is, what the journey is to get to the point where you have that authorization, you've been approved, and you can go and sell work to your federal agency customers.

Watch Now
Blog Feature

ISO Certifications | ISO 27701

The Cost of an ISO 27701 Certification

By: CHRIS LIPPERT
October 4th, 2022

Watch Now

Previous All posts Next

Schellman

4010 W Boy Scout Boulevard, Suite 600
Tampa, FL 33607

U.S. 1.866.254.0000

Outside the U.S. 1.813.288.8833

Services
Industries
Resources
Company

© SchellmanPrivacy PolicyTerms

“Schellman” is the brand name under which Schellman & Company, LLC and Schellman Compliance, LLC provide professional services. Schellman & Company, LLC and Schellman Compliance, LLC practice as an alternative practice structure in accordance with the AICPA Code of Professional Conduct and applicable law, regulations and professional standards. Schellman & Company, LLC is a licensed certified public accounting firm (Florida license number AD62941) registered with the Public Company Accounting Oversight Board (PCAOB) that provides attest services to its clients, and Schellman Compliance, LLC provides nonattest cybersecurity and compliance professional services to its clients. Schellman Compliance, LLC is not a licensed CPA firm. Schellman & Company, LLC and Schellman Compliance, LLC are independently owned and are not liable for the services provided by any other entity providing services under the Schellman brand. Our use of the terms “our firm” and “we” and “us” and terms of similar import, denote the alternative practice structure conducted by Schellman & Company, LLC and Schellman Compliance, LLC.