Jim Hietala, GSEC, GCFW and CISSP, is the principal of Compliance Research Group, providing research, analysis, and consulting services in the areas of compliance, risk management, and IT security. Jim has provided consulting services to organizations such as SANS, The Open Group Security Forum, Logical Security, and a number of IT security and compliance vendors. He is a frequent speaker at industry conferences, and he recently authored a comprehensive course on IT risk management. He participates in the SANS Analyst/Expert program, having written several whitepapers and participated in several webcasts for SANS. He has also published numerous articles on information security, risk management, and compliance topics in publications including The ISSA Journal, Bank Accounting & Finance, Risk Factor, and others. He holds a B.S. in Marketing from Southern Illinois University.
Editorial focus: Compliance, Risk Management, IT Security, IT-GRC software, HIPAA, GLBA, Privacy
Jim can be reached at: jim@compliancefocus.com
|
Website or Blog: |
Description |
Link |
|
Open Source project, developers of Security Officers Best Friend tool, Risk Assessment guide, Open Risk Model Repository (ORIMOR), Risk Management Handbook |
http://www.somap.org/ | |
|
Developers of FAIR risk analysis model, consulting in risk management. RMI’s Blog is RiskAnalys.is. |
http://www.riskmanagementinsight.com/ http://riskmanagementinsight.com/riskanalysis/ | |
|
NIST publications on risk management |
http://csrc.nist.gov/publications/PubsTC.html | |
|
COSO Enterprise Risk Management – Integrated Framework |
http://www.coso.org/publications.htm | |
|
Risk management association |
http://www.theirm.org/ |