Compliance Focus is a new information resource for compliance, risk, and security professionals. Our mission is to bring you relevant news and analysis on topics related to the challenge of compliance with regulations such as GLBA, HIPAA, SOX, PCI, NERC/FERC, and other regulations and standards. We will also deliver information on the closely related topics of risk management and IT security. Our aim is to provide the most extensive information resources regarding these regulations and topics.
Our goal is to provide this information resource free of any vendor bias, and to cut through the clutter that often surrounds compliance, risk management, and IT security. Compliance Focus provides detailed information on the various regulations, as well as information on risk management and IT security. Extensive links to other web resources on these topics are provided, as well as an index to vendors supplying products that can help with compliance, risk management, and security.
Besides the website resources, Compliance Focus maintains a blog authored by three industry observers, offering commentary and analysis on various aspects or compliance, risk management, and security.
The Compliance Focus team believes in transparency and full disclosure, meaning that if we discuss or mention in our blog entries or articles specific vendors or organizations that we have any sort of business relationship with, we will always disclose this fact.
The Compliance Focus team includes:
Jim Hietala
Jim Hietala, GSEC, GCFW and CISSP, is the principal of Compliance Research Group, providing research, analysis, and consulting services in the areas of compliance, risk management, and IT security. Jim has provided consulting services to organizations such as SANS, The Open Group Security Forum, Logical Security, and a number of IT security and compliance vendors. He is a frequent speaker at industry conferences, and he recently authored a comprehensive course on IT risk management. He participates in the SANS Analyst/Expert program having written several whitepapers for SANS, and participated in webcasts for SANS. He has also published numerous articles on information security, risk management, and compliance topics. He holds a B.S. in Marketing from Southern Illinois University.
Editorial focus: Compliance, Risk Management, IT Security, IT-GRC software, HIPAA, GLBA, Privacy
Mark Willoughby
Editorial focus: Compliance, IT Security, Identity Management & Compliance, PCI
We are also looking for additional contributors. Please drop us a note if you have a background in compliance, risk management, security, and privacy, and an interest in contributing content.
Last but not least, we have created a Feedburner network on Governance, Risk, Compliance, and IT-GRC. If you have an existing blog that addresses these topics, and if you would like more exposure for your blog (and maybe even ad revenues someday), drop us an e-mail at at info@compliancefocus.com, and we will send you an invitation to connect to the network. You can also check out the network, other bloggers, and recent content here.