Contact Us
Services
Services
Crypto and Digital Trust
Crypto and Digital Trust
Schellman Training
Schellman Training
Sustainability Services
Sustainability Services
AI Services
AI Services
About Us
About Us
Leadership Team
Leadership Team
Corporate Social Responsibility
Corporate Social Responsibility
Careers
Careers
Strategic Partnerships
Strategic Partnerships

Blog

The Schellman Blog

Stay up to date with the latest compliance news from the Schellman blog.

Lauren Edmonds

Lauren Edmonds is a Managing Director at Schellman based in Denver, Colorado. With more than 20 years of audit and compliance experience, Lauren has participated in more than 2,000 assessments including SOC 1, SOC 2, SOC 3, WebTrust, PCI DSS, FedRAMP, IRAP, NIST, HIPAA, ISO certification reviews and general attestation projects evaluating and assessing global corporations’ IT control environments and business processes. In addition, she has internal audit experience in network security, risk assessment, IT general controls, and systems development. Through the various audits performed, Lauren has evaluated risks and controls for a number of industries and organizations including financial services, manufacturing, marketing, distribution, and service-based organizations, such as telecommunications providers, data center, managed, and security service providers. Lauren is a PCI QSA and maintains the CISSP, CISA, and CCSK certifications. Additionally, Lauren is trained as a lead auditor for ISO 27001 (27017, 27018, 27701), ISO 9001, ISO 20000-1 and ISO 22301 Standards.

Blog Feature

Compliance and Certification | Education

By: Lauren Edmonds
November 10th, 2015

The ultimate goal of a compliance program is not only to make sure your organization meets the requirements for compliance, but to also ensure employees do the right thing. But it can be difficult to determine the success of your organization’s compliance. What do you measure? How often do you measure? What do you focus on?

Blog Feature

SOC Examinations

By: Lauren Edmonds
September 14th, 2015

Can I have disaster recovery controls within my SOC 1 test of controls matrix?

{