Compliance Focus is a new information resource for
compliance, risk, and security professionals. Our mission is to bring you
relevant news and analysis on topics related to the challenge of compliance
with regulations such as GLBA, HIPAA, SOX, PCI, NERC/FERC, and other
regulations and standards. We will also deliver information on the closely
related topics of risk management and IT security. Our aim is to provide the
most extensive information resources regarding these regulations and topics.
Our goal is to provide this information resource free of any
vendor bias, and to cut through the clutter that often surrounds compliance,
risk management, and IT security. Compliance Focus provides detailed
information on the various regulations, as well as information on risk
management and IT security. Extensive links to other web resources on these
topics are provided, as well as an index to vendors supplying products that can
help with compliance, risk management, and security.
Besides the website resources, Compliance Focus maintains a
blog authored by several industry observers, offering commentary and analysis on
various aspects or compliance, risk management, and security.
The Compliance Focus team believes in transparency and full
disclosure, meaning that if we discuss or mention in our blog entries or
articles specific vendors or organizations that we have any sort of business
relationship with, we will always disclose this fact.
The Compliance Focus blogging team includes:
Jim Hietala
Jim Hietala, CISSP, GSEC, is
Research Director and a principal of Compliance
Research Group, providing research, analysis, and consulting
services in the areas of compliance, risk management, and IT security. He is
also the Vice President, Security for The Open Group, where he manages all security and
risk management programs and standards activities.
Jim has provided research and
consulting services to organizations such as SANS, The Open Group, and a number
of IT security and compliance vendors. He is a frequent speaker at industry
conferences, and he recently authored a comprehensive course on IT risk
management. He participates in the SANS Analyst/Expert program, having written
several research whitepapers and participated in several webcasts for
SANS. He has also published numerous articles on information security,
risk management, and compliance topics in publications including The ISSA
Journal, Bank Accounting & Finance, Risk Factor, SC Magazine, and others.
An industry veteran, he has held
leadership roles at ControlPath, Avail Networks, Alternative Technologies,
eSoft, Qwest, Concentric Network, and Digital Pathways. He developed and
launched the industry’s first remote access VPN service (Concentric RemoteLink)
and encrypting ISDN router (at Network Express), and launched a compliance and
risk management software start-up in the IT-GRC market.
He holds a B.S. in Marketing from
Southern Illinois University.
Blog: www.compliancefocus.com
Twitter: http://twitter.com/jim_hietala
LinkedIn: http://www.linkedin.com/in/jimhietala
Blogging focus: Compliance, Risk Management, IT Security,
IT-GRC software, HIPAA, GLBA, Privacy
Jim can be reached at: jim@compliancefocus.com
-----
Mark Willoughby
Blogging focus: Compliance, IT Security, Identity Management & Compliance, PCI
-----
We are also looking for additional contributors.
Please drop us a note if you have a background in compliance, risk management,
security, and privacy, and an interest in contributing content.
Last but not least, we have created a Feedburner network on Governance, Risk,
Compliance, and IT-GRC. If you have an existing blog that addresses these
topics, and if you would like more exposure for your blog (and maybe even ad
revenues someday), drop us an e-mail at at info@compliancefocus.com,
and we will send you an invitation to connect to the network. You can also
check out the network, other bloggers, and recent content here.