Schellman becomes The First ISO 42001 ANAB Accredited Certification Body!

Contact Us
Services
Services
Crypto and Digital Trust
Crypto and Digital Trust
Schellman Training
Schellman Training
Sustainability Services
Sustainability Services
AI Services
AI Services
About Us
About Us
Leadership Team
Leadership Team
Corporate Social Responsibility
Corporate Social Responsibility
Careers
Careers
Strategic Partnerships
Strategic Partnerships

Why Schellman is Getting into ESG – Hear Directly from Our Chief Growth Officer

ESG

If you know Schellman, you likely know our standard plug—we’re a leading provider of attestation and compliance services and we’re the only provider in the world that has a CPA firm, a globally licensed PCI Qualified Security Assessor, a comprehensive ISO Certification Body, HITRUST CSF Assessor, a FedRAMP 3PAO, CMMC C3PAO, and APEC Accountability Agent working together to address our client’s complex and interrelated security and privacy compliance requirements.

And that’s not even all of our qualifications, nor does that description capture all the different kinds of services we offer. Within our focus on cybersecurity, we’re very proud to be very versatile—to be able to provide our clients with the opportunity to achieve many of their goals through us as their sole provider.

Now, we’re trying to meet even more of those needs by expanding into brand new territory—Schellman is launching environmental, social, and governance services to help organizations take a comprehensive corporate management approach to sustainability and ESG principles.

That probably sounds like a departure from our usual, which is why—in this article—I’m going to explain why we’re getting into this arena (and perhaps why you should as well).

As our firm-wide Managing Principal, my primary responsibility is to listen to our clients before working with our internal leaders to develop and deliver the services that meet our core purpose—to “help organizations build trust with their customers.”

Let me explain how that led us to ESG. 

ESG’s Growing Appeal

So why is the most cyber-focused CPA firm betting on ESG? You’re actually not the first to ask.

In a recent briefing, a senior executive with the AICPA stated, “We are very familiar with Schellman’s achievements in SOC, IT audit, and cybersecurity. I’m curious what is driving you to invest in ESG?”

It was a great question, and there are three fundamental answers:

1. Board Focus on ESG

Not unlike the initial emergence of the internal controls and IT governance stemming out of Sarbanes Oxley, ESG has captured not only the attention but also the prioritization of Boards of Directors and the investment community—one could even argue that Boards have focused faster on ESG than IT governance or even cybersecurity, and we noticed.

The fact that ESG includes the “G” means that it starts with governance, making it a Board-level issue.

2. Alignment to Enterprise Governance and Risk Management

When you break down ESG’s subject matter, there’s significant overlap with enterprise governance frameworks (including the COSO frameworks and the TCFD sustainability standards).

Organizations are starting to get this and bring ESG into their broader governance, risk, and compliance frameworks, making it more relevant to Schellman.

3. Schellman’s Core Competency around Trust Services

What we do best is report and certify organizations against commitments that organizations make to their customers and stakeholders.

SOC reports and ISO 27001 certifications are exactly this for security programs and controls, and so we feel the idea of issuing SSAE or ISAE-based attestation reports against management commitments for sustainability or issuing an ISO 14001 certification for Environment Management Systems is fundamentally no different.

 Why is Schellman Expanding into ESG?

For those reasons, we started to research real expansion into this sector, and we committed after realizing there would be three big benefits in doing so. 

1. There’s a Growing Market Demand.

 

As we mentioned briefly before, the market demand for ESG services is growing rapidly. Clients, boards, and investors are increasingly seeking assurance and transparency in organizations' sustainability practices and their impact on society, and those organizations need the help of independent evaluators to provide it.

By investing in ESG, we are not only meeting the needs of our current clients but also positioning ourselves as a trusted partner in navigating the evolving landscape of responsible business practices.

2. ESG Interconnects with Our Core Services.

 

Moreover, we recognize the interconnectedness of ESG with other offerings we provide that touch on broader governance, risk management, and compliance frameworks.

By aligning ESG with our existing expertise in enterprise governance and risk management, we can offer comprehensive solutions that address the evolving needs of our clients even more holistically.

3. ESG Enhances Our Value Proposition.

 

Finally—and perhaps most importantly—our embracing ESG allows us to expand our core competencies and provide a broader range of trust services to our clients.

Just as we validate organizations’ commitments to security programs and controls through SOC reports and ISO 27001 certifications, we can now extend our expertise to evaluate and certify their sustainability efforts through ESG-focused attestation reports and certifications like ISO 14001 for Environmental Management Systems.

The addition of our new services now further strengthens our value proposition and positions us as a trusted advisor in all areas related to building trust with customers and stakeholders.

What We’ve Done and What’s to Come

Admittedly, Schellman has always been strong in (G)overnance and when we first started looking down this road, we realized that there is more overlap than you would expect on the (S)ocial when considering the role people play in both governance and compliance.

But environmental impact and sustainability require more domain expertise, and since we as a firm lacked the level of expertise we pride ourselves on having regarding our other services, we hired Tom Andresen Gosselin, who has over two decades of experience in independently assessing organizations’ ESG capabilities and will oversee our entire ESG practice.

Schellman and ESG: More Developments on the Way

The market has spoken—more and more organizations are investing in ESG, making Schellman’s expansion into this sector not just the right thing to do but what we’re hoping will be a competitive differentiator.

At this time, Schellman is evaluating a wide range of these solutions from adherence to frameworks such as TCFD, SBTi, GRI, and GHG standards, and we will soon be offering ISO 14001 certification as the latest addition to our ISO suite of services.

As we continue to build out our diverse services package, we’re excited about this opportunity and looking forward to doing what we have done for more than twenty years—take what our clients have communicated is something they need, and work with them to develop and deliver the right level of assurance they can convey to their customers, investors, and other stakeholders.

ESG represents our latest endeavor at this—please stay tuned as we plan to publish more information in the coming weeks about ESG in general, as well as more details on our service offerings that will help you meet even more of your organizational goals.

In the meantime, please feel free to contact us as we’d love to hear about your initiative and what your needs are.

About Douglas Barbin

As President and National Managing Principal, Doug Barbin is responsible for the strategy, development, growth, and delivery of Schellman’s global services portfolio. Since joining in 2009, his primary focus has been to expand the strong foundation in IT audit and assurance to make Schellman a market leading diversified cybersecurity and compliance services provider. He has developed many of Schellman's service offerings, served global clients, and now focuses on leading and supporting the service delivery professionals, practice leaders, and the business development teams. Doug brings more than 25 years’ experience in technology focused services having served as technology product management executive, mortgage firm CTO/COO, and fraud and computer forensic investigations leader. Doug holds dual-bachelor's degrees in Accounting and Administration of Justice from Penn State as well as an MBA from Pepperdine. He has also taken post graduate courses on Artificial Intelligence from MIT and maintains multiple CPA licenses and in addition to most of the major industry certifications including several he helped create.