Federal Assessments

While many 3PAOs are historical government contractors and consultants, Schellman provides only independent assessment services to cloud providers.

  • FedRAMP vs. StateRAMP

    FedRAMP vs. StateRAMP

    FedRAMP has become quite popular, but did you know you also have the option of StateRAMP? We draw comparisons between these 2 compliance initiatives so that you get a sense of which is best for you.

    Read Article
  • When to Engage a FedRAMP Consultant vs. When to Engage a 3PAO

    When to Engage a FedRAMP Consultant vs. When to Engage a 3PAO

    Trying to get started with FedRAMP? To help you avoid confusion, we break down what kind of firm you need and when so that your cloud service offering gets compliant sooner.

    Read Article
  • Preparing for CMMC: Three Things You Can Do Right Now

    Preparing for CMMC: Three Things You Can Do Right Now

    Though CMMC is officially still on the way, there is plenty you can do right now to get ready. We break down 3 ways you can prepare starting now, using resources already available to you.

    Read Article
  • Cybersecurity and the Federal Government

    Cybersecurity and the Federal Government

    Read Flipbook
  • How Much Do FedRAMP Assessments Cost?4:33

    How Much Do FedRAMP Assessments Cost?

    Watch Video
  • Finding Your FedRAMP Consultant: What to Ask and When

    Finding Your FedRAMP Consultant: What to Ask and When

    Before you engage a FedRAMP 3PAO like Schellman to assess you, you'll need the services of a consultant. Read how these advisors can help you & what to ask them to ensure you get the best one for you.

    Read Article
  • What is the FedRAMP Ready Process?

    What is the FedRAMP Ready Process?

    Want to get FedRAMP Ready but aren’t sure how it works? Learn about the 4 phases to the process that will lead you to that formal Ready designation on the FedRAMP Marketplace.

    Read Article
  • How to Get FedRAMP Ready

    How to Get FedRAMP Ready

    Want to become FedRAMP Ready on the Marketplace but not sure what it takes? Learn about the minimal requirements your CSO will need to meet ahead of the Ready Assessment.

    Read Article
  • Which of the NIST SP 800-Series Publications Should You Follow?

    Which of the NIST SP 800-Series Publications Should You Follow?

    Not sure how the NIST 800 Series can help you? We break down 3 of the more well-known publications from the series to help you understand which one suits you.

    Read Article
  • What Is the FedRAMP Ready Assessment? Should You Get FedRAMP Ready?

    What Is the FedRAMP Ready Assessment? Should You Get FedRAMP Ready?

    Should your organization get FedRAMP Ready? We break down what this assessment is and how it can help you, as well as the benefits and drawbacks to pursuing this route.

    Read Article
  • CMMC 2.0 Scoping Insight: 2 Tips For Using PCI Context to Understand Your Potential Scope

    CMMC 2.0 Scoping Insight: 2 Tips For Using PCI Context to Understand Your Potential Scope

    As we prepare for the launch of CMMC, we explain how to use more familiar compliance territory to understand and shape your eventual CMMC scope.

    Read Article
  • CMMC and FedRAMP Updates to Kick Off 202248:06

    CMMC and FedRAMP Updates to Kick Off 2022

    Watch Video
  • Schellman Now an Authorized CMMC Third Party Assessment Organization (C3PAO)

    Schellman Now an Authorized CMMC Third Party Assessment Organization (C3PAO)

    Schellman becomes the first compliance services firm authorized by the CMMC AB and the 5th C3PAO Overall October 19, 2021 (Tampa, FL) – Schellman is pleased to announce that we are now...

    Read Article
  • Navigating FedRAMP’s Security Requirements for Containers

    Navigating FedRAMP’s Security Requirements for Containers

    For CSPs looking to better understand FedRAMP security requirements for containers, Schellman Manager Matt Hungate provides an overview

    Read Article
  • HHS Requirement for Security Practices NIST

    HHS Requirement for Security Practices NIST

    Schellman's Debbie Zaller provides an overview of the HHS issued HITECH Act amendment

    Read Article
  • NIST SP 800-53: Transitioning from Revision 4 to Revision 5

    NIST SP 800-53: Transitioning from Revision 4 to Revision 5

    Schellman's Matt Hungate looks at significant changes to NIST SP 800-53, Revision 5

    Read Article
  • Vulnerability Scanning for PCI and FedRAMP53:18

    Vulnerability Scanning for PCI and FedRAMP

    Watch Video
  • Launch CMMC into your Compliance Program49:31

    Launch CMMC into your Compliance Program

    Watch Video
  • Panicked About CMMC?

    Panicked About CMMC?

    Read Flipbook
  • Panicked About CMMC? Don't be!

    Panicked About CMMC? Don't be!

    The Cybersecurity Maturity Model Certification (CMMC) has been a hot topic in the federal and defense contracting sector leading up to and since its formal release with v1.0 on January 31, 2020.

    Read Article
  • loading
    Loading More...