Scott Zelko

Scott Zelko is a Principal at Schellman & Company, Inc. Scott leads the Northeast Practice and the ISO Certification service line. Scott has more than 25 years of experience in the information technology field including IT management, system implementations, attestation and other advisory services related to information security, general computer controls, systems and application development. In addition, Scott works with clients to develop unified compliance strategies to meet internal, regulatory and client requirements.

  • Clearing Up The Confusion - Type 1 vs Type 2 and the Value Proposition

    Clearing Up The Confusion - Type 1 vs Type 2 and the Value Proposition

    It may come as a bit of a surprise—maybe not—but there are actually two types of SOC reports. Upon examination, the service organization is responsible for specifying whether or not a...

    Read Article
  • Case Closed: 3 Benefits ISO 27001 Can Have for Your Law Firm

    Case Closed: 3 Benefits ISO 27001 Can Have for Your Law Firm

    When you think of a data breach, what comes to mind? It’s probably the image of a hacker stealing data from a large business or company that stores an abundance of customer data—like...

    Read Article
  • Case Closed: 3 Benefits ISO 27001 Can Have for Your Law Firm

    Case Closed: 3 Benefits ISO 27001 Can Have for Your Law Firm

    When you think of a data breach, what comes to mind? It’s probably the image of a hacker stealing data from a large business or company that stores an abundance of customer data—like...

    Read Article
  • Top Tips for Security in the Cloud

    Top Tips for Security in the Cloud

    Surprisingly, business leaders—not IT departments—are the driving force behind six out of 10 migrations to the cloud. These leaders are often bothered by the nagging question, “Is the cloud...

    Read Article
  • Why the CFO is a Vital Part of Your Compliance Team

    Why the CFO is a Vital Part of Your Compliance Team

    Despite years of preparation and billions of dollars in spending, today’s businesses still aren’t prepared for cyber-attacks. Just turn on the evening news and you’ll be greeted with the name of...

    Read Article
  • SOC Reports: The Difference between Type 1 and Type 2?

    SOC Reports: The Difference between Type 1 and Type 2?

    There are two types of SOC 1 reports. The service organization is responsible for specifying whether or not a “Type 1” or “Type 2” will be performed.

    Read Article
  • Curing the Big Four Bias

    Curing the Big Four Bias

    Imagine, for a moment, that you are sick and require a major operation. Among the many thoughts that would immediately cross your mind would be the need to find “the best” doctor available. What...

    Read Article
  • More Details on DEA e-Prescription Requirements

    More Details on DEA e-Prescription Requirements

    On Monday, we posted an article announcing that the DEA had issued new regulations for “Electronic Prescriptions of Controlled Substances.” Since then we have further reviewed the ruling and also...

    Read Article
  • DEA Requires Third Party Audits of e-Prescription Applications

    DEA Requires Third Party Audits of e-Prescription Applications

    With the medical industry quickly moving towards electronic records and transactions, why wouldn’t pharmacies do the same?

    Read Article
  • loading
    Loading More...