Schellman is a leading provider of attestation and compliance services. We are the only company in the world that is a CPA firm, a globally licensed PCI Qualified Security Assessor, an ISO Certification Body, HITRUST CSF Assessor, a FedRAMP 3PAO, and most recently, an APEC Accountability Agent. Renowned for expertise tempered by practical experience, Schellman's professionals provide superior client service balanced by steadfast independence. Our approach builds successful, long-term relationships and allows our clients to achieve multiple compliance objectives through a single third-party assessor.
By:
Schellman
March 19th, 2024
TAMPA, Fla. – March 19, 2024 – Schellman, a leading provider of attestation and compliance services and a top 50 CPA firm, today announced the appointment of Christopher Kouzios as the company's new Chief Information Officer. With his exceptional expertise in information security initiatives, Kouzios is set to spearhead Schellman's technology initiatives including advancing the firm’s Artificial Intelligence endeavors.
By:
Schellman
March 5th, 2024
TAMPA, Fla. – March 5, 2024 – Schellman, a leading provider of attestation and compliance services and a top 50 CPA firm, is pleased to announce that the firm has received accreditation for France’s Health Data Host (HDS) certification services, the first US-based firm to receive such accreditation by COFRAC.
Healthcare Assessments | HIPAA
By:
Schellman
February 1st, 2024
Successfully managing your HIPAA risk means accounting for those introduced by your vendors that are supplementing existing business processes in different ways. Vendors can make you vulnerable in a variety of ways, which means a variety of solutions becomes necessary.
By:
Schellman
January 17th, 2024
As you may remember, when Tom Sawyer was asked to paint a fence, he ended up outsourcing the job and even got his chosen “vendors” to pay him for the privilege. What was an assigned chore ended up being done by others and turning a profit for Tom.
By:
Schellman
November 20th, 2023
With the introduction of the Cybersecurity Maturity Model Certification (CMMC) program, contractors working with the U.S. Department of Defense (DoD) will be required to meet a certain level of cybersecurity maturity ensuring the protection of the involved sensitive information and data, specifically controlled unclassified information (CUI) and federal contract information (FCI).
By:
Schellman
November 15th, 2023
With over two decades of HIPAA history behind us, more than a decade of mandatory compliance and federal compliance enforcement, and a shortage of resources to help hospitals achieve compliance, the healthcare industry is still plagued by non-compliance issues every year—particularly regarding risk and access management.
By:
Schellman
October 31st, 2023
If you’re in healthcare, you likely already know that maintaining HIPAA compliance requires a very thorough risk assessment. What you may not know is that HIPAA risk assessments are also an aspect of the law that is too often overlooked.
By:
Schellman
October 24th, 2023
The Cybersecurity Maturity Model Certification (CMMC) is a new framework that aims to better secure federal contract information (FCI) and controlled unclassified information (CUI) that is stored, processed, or transmitted by defense contractors and the entire defense industrial base (DIB).