In the realm of data security and compliance, one term that frequently arises is "scope." It's a pivotal concept, particularly within the context of the Payment Card Industry Data Security Standard (PCI DSS). In this video, Senior Manager Sully Perella discusses what's in scope for PCI DSS compliance and how your organization may have compliance implications even if you don't directly handle cardholder data.

In today's rapidly evolving landscape, managing climate-related risks has become an essential aspect of corporate responsibility. As organizations strive to demonstrate their commitment to sustainability, one crucial component emerges: setting credible greenhouse gas emissions reduction targets.

When seeking Payment Card Industry (PCI) compliance, the expiration of terminals can introduce complexities and uncertainties for merchants. In this video, Sully Perella, a practice leader at Schellman, sheds light on the significance of expired terminals and offers insights into navigating this compliance challenge.

Are you looking to enhance your company's ESG (Environmental, Social, Governance) performance? At Schellman, we offer a range of services tailored to help you navigate and excel in this critical area, and these can be categorized into three main service areas: assessments, assurance, and certification.

In the landscape of modern business, the acronym "ESG" has become increasingly prominent. But what exactly does it entail, and why should companies prioritize it? As Tom Andresen Gosselin, the ESG Practice Director at Schellman, elucidates, there are five pivotal benefits to embracing ESG principles.

In this video, Doug Barbin, President and National Managing Principal at Schellman, and Anil Markose, Chief Strategy Officer at Abacode, discuss the theme of trust in the context of cybersecurity and compliance. Join Doug and Anil as they delve into the challenges posed by the current audit-based trust mechanism, particularly in a rapidly evolving IT landscape characterized by innovations like AI and DevOps.

In an ever-evolving technological landscape, staying ahead of the curve is crucial. At Schellman, we've built our reputation on being pioneers in cloud security assessments, and today, we're excited to announce our latest venture: diving headfirst into the world of Artificial Intelligence (AI) with ISO 42001 certification services.

At Schellman, we're committed to supporting your ESG (Environmental, Social, and Governance) efforts. Today, let's delve into one of our transformative assessment services – ESG Materiality.

To address some of the past confusion regarding the dating of PCI reports, the PCI Security Standards Council (SSC) has altered the report date methodology for PCI DSS v4.0 to provide more clarity and consistency to this process.

One of the questions that we get the most often when we're talking about Federal assessments is how long does it take to get through the assessment process and what happens afterward to actually get to FedRAMP authorization?