Schellman Receives CREST Penetration Testing Accreditation

Schellman Receives CREST Penetration Testing Accreditation

Schellman, a leading provider of attestation and compliance services and a top 50 CPA firm, is pleased to announce the firm is now a CREST-accredited penetration test provider. With a 10-year history of Penetration Testing Services and delivering quality offensive security assessments, this accreditation allows Schellman to serve clients in markets around the globe.

CREST is an international not-for-profit, membership body representing the global cybersecurity industry. Founded in the UK in 2006, it now has regional chapters covering the Americas, Asia, Australasia, and EMEA. CREST does not prescribe any specific penetration test methodology, rather focusing on the total business process, from how scoping is conducted to what kind of quality assurance controls are in place for reporting. While Schellman already retained CREST Registered Penetration Testers on staff, this next step of organizational accreditation demonstrates the firm’s commitment to maintaining high-quality methodologies, processes, and reports.

“Schellman has consistently provided top-tier security assessment services to some of the world's most distinguished organizations," said Avani Desai, CEO of Schellman. "Achieving CREST accreditation marks a significant milestone and further establishes the firm as a trusted partner, particularly to our global clients and those in areas such as the financial services sector in the US. This accreditation shows our commitment to delivering high-quality, comprehensive offensive security solutions that our clients have come to trust. Additionally, CREST membership is part of our international expansion plans as we work with clients in new compliance areas such as DORA, IRAP, and others.”

“CREST is delighted to welcome Schellman as an accredited member company for its penetration testing services,” said Rowland Johnson, CREST President. “To achieve this, Schellman successfully completed a demanding assessment process that examined test methodologies, legal and regulatory requirements, data protection standards, logging and auditing, internal and external communications with stakeholders, as well as how data security is maintained. Through CREST accreditation, Schellman has valuable external validation that the company consistently delivers the highest professional penetration testing services to its customers.”

Earlier this year, Schellman also announced that it received accreditation for France’s Health Data Host (HDS) certification services, the first US-based firm to do so, and that it can now support Australia’s Infosec Registered Assessors Program (IRAP) assessments. These accreditations, alongside CREST, enable the firm to expand services, continue to push the boundaries of security testing, and deliver even greater value to clients as they look to ensure safety and security of mission-critical systems.

“Achieving CREST certification is more than a milestone for Schellman – it is a cornerstone in our mission to ensure robust and resilient cyber defenses for our clients.,” said Kent Blackwell, Director for Schellman’s Penetration Testing Services. “Our clients can trust that our services are delivered with excellence and integrity, backed by a team that meets internationally recognized standards. This accreditation not only enhances our ability to conduct thorough penetration tests but also further cements Schellman as a trusted advisor in the cybersecurity realm, capable of navigating complex security landscapes with precision and expertise.”

Review Schellman’s CREST Accreditation Credential on the CREST Website. To learn more about how Schellman can help your organization, visit the website.

About Schellman

“Schellman” is the brand name under which Schellman & Company, LLC and Schellman Compliance, LLC provide professional services. Schellman stands as a leading global provider of attestation, compliance, and certification services. Operating under two distinct entities, Schellman & Company, LLC (a top 50 firm) and Schellman Compliance, LLC (a globally accredited compliance assessment firm which is not a licensed CPA firm). The services provided by the Schellman entities include acting as a CPA firm (Schellman & Company, LLC Florida license number AD62941) as a leading provider of SOC reports, an ISO Certification Body, a PCI Qualified Security Assessor Company, a HITRUST assessor, a FedRAMP 3PAO, being among the pioneering CMMC Authorized C3PAOs, as well as offering international certification services including TISAX and HDS.

Renowned for its professionals’ expertise combined with practical experience, Schellman delivers superior client service while upholding steadfast independence. The company's approach fosters successful, long-term relationships, enabling clients to achieve multiple compliance objectives through a single trusted third-party assessor. For further information about the services provided, please visit schellman.com.

About CREST

CREST is an international not-for-profit accreditation and certification body that represents and supports the technical information security market. CREST provides internationally recognized accreditations for organizations and professional-level certifications for individuals providing vulnerability assessment, penetration testing, cyber incident response, threat intelligence services, and Security Operations Centre (SOC) services. All CREST member companies undergo regular and stringent assessments; while CREST-qualified individuals have to pass rigorous examinations to demonstrate knowledge, skill, and competence. CREST is governed by elected Councils of experienced security professionals who also promote, develop, and support awareness, ethics, and standards within the cybersecurity marketplace.

V2 Communications
schellman@v2comms.com

View source version on businesswire.com: https://www.businesswire.com/news/home/20240625800738/en/