<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1977396509252409&amp;ev=PageView&amp;noscript=1">
Contact a Specialist
Industry Solutions
Industry Solutions
Cloud Computing & Data Centers
Cloud Computing & Data Centers
Financial Services & Fintech
Financial Services & Fintech
Healthcare
Healthcare
Payment Card Processing
Payment Card Processing
US Government
US Government
Learning Center
Learning Center
Articles
Articles
Whitepapers
Whitepapers
Case Studies
Case Studies
Events & Live Webinars
Events & Live Webinars
On-Demand Webinars
On-Demand Webinars
Compliance Reliance
Compliance Reliance
About Us
About Us
Leadership Team
Leadership Team
Careers
Careers
Corporate Social Responsibility
Corporate Social Responsibility

Blog

The Schellman Advantage Blog

Stay up to date with the latest compliance news from the Schellman Advantage blog.

COLLIN VARNER

Collin Varner is a Senior Associate at Schellman & Company, LLC. Prior to joining Schellman, Collin was an Advisory Manager planning, organizing, and managing multiple facets of information technology security reviews including cybersecurity assessments, risk management, internal and external audit, system implementations, and customized attestation reporting. Further, Collin also served as the lead in IT compliance for a small, private healthcare organization, in addition to several years experience as a consultant for reputable accounting firms. As a Senior Associate for Schellman, Collin is focused primarily on specializing in IT attestation, audit and compliance activities as they relate to numerous standards including Sarbanes-Oxley (SOX), Service Organization Control (SOC), HIPAA, and ISO 27001.

Blog Feature

By: COLLIN VARNER
May 8th, 2019

Last month marked two years since the New York Department of Financial Services (NYDFS) cybersecurity requirements went into effect, so what exactly has been happening during that period? Let’s check in on the moving parts of the still young cybersecurity requirement.

Blog Feature

By: COLLIN VARNER
January 21st, 2019

As technologies continue to advance, corporations will consistently evaluate whether responsibilities should be managed internally or outsourced to a qualified vendor.  Whatever the criteria your senior management / board of directors utilize as a benchmark for vendor consideration, questions and concerns should be at the forefront of the vendor management program.  A primary consideration to remember is that while the idea of outsourcing tasks may seem like the clear risk management option, an organization must understand that the associated risks are not removed from the company, but rather just transferred and still a responsibility for the firm collecting and transmitting their customer information.

Blog Feature

By: COLLIN VARNER
October 11th, 2017

On March 1, 2017, New York Department of Financial Services (NYDFS) released their cybersecurity requirements for financial services companies and their third-party providers.  Whether based in New York or not, organizations conducting business or hosting information (“Covered Entities”) related to New York banking, insurance, and financial services industries must comply with these regulations—the only exceptions are national and federal banks, which have been excluded.  And while some exemptions do apply, every organization should still consider adopting a cybersecurity framework.

Blog Feature

By: COLLIN VARNER
September 27th, 2017

In the information technology world, there are currently few buzzwords as popular as the term cybersecurity. As CIOs and VPs evaluate the status of their network environment, and decide who will oversee the related processes—including who has the unfortunate task of reporting to the Board