About Us

Compliance Forge, LLC 

We are specialists within the cybersecurity profession, where our focus is on Governance, Risk and Compliance (GRC). Our comprehensive documentation helps companies become and stay compliant with cybersecurity and privacy requirements. 

compliance-forge-editable-cybersecurity-documentation.jpg complianceforge-information-security-compliance-documentation.jpg complianceforge-oregon-consumer-identity-theft-protection-act-compliance.jpg
Compliance Forge, LLC (ComplianceForge) Compliance-Focused Documentation Veteran-Owned & Made In The USA
We focus on writing cybersecurity documentation so that you can focus on what you do best - growing your business! Our customers are in good company, since our products are used by many of the most well-known companies in the country, as well as many international companies. There are no such things as "Bronze, Silver or Gold" levels of compliance - a standard is a standard for a reason and we understand that when we develop our documentation products to help our customers have evidence of due care and due diligence for their compliance needs.  We are proud to be a Veteran-Owned Small Business (VOSB). Our headquarters is located just outside Portland, Oregon in the heart of the "Silicon Forest," which is home to a vibrant hi-tech business community. 

 

OUR BELIEFS 

We are here to help businesses that lack this special knowledge & experience. Simple truths that we believe in include: 

  • Information security is too important to be left to amateurs;
  • Every business needs comprehensive policies & standards;
  • Our solution should be affordable and scalable to encourage growth; and
  • Documentation should be written in business-friendly language.

Our vision at ComplianceForge is based on the core understanding of the necessity for businesses of all sizes and industries to adopt security practices to protect their interests, including their customers, their employees, and their partners. 

 

FOCUS ON THE NEEDS OF BUSINESS

We are a business accelerator - our focus is to provide solutions that reduce the time for businesses to meet their cybersecurity needs. Many of our solutions are about 1/10th of the cost as compared to hiring a consultant to custom-develop documentation and our solutions are delivered within one business day. 

Information security breaches and non-compliance fines have the ability to close a business for good. When it comes to NIST 800-171, FAR and NISPOM, companies can lose contracts or be prevented from being eligible to bid. We are experts in our field and have done the heavy lifting for you, so that you can focus on what you do best, which is growing your business and not having to worry about creating documentation for requirements that you are not experienced with:

  • NIST 800-171
  • DFARS
  • FAR
  • NISPOM
  • Payment Card Industry Data Security Standard (PCI DSS) 
  • State laws such as MA 201 CMR 17.00 
  • Fair & Accurate Credit Transactions Act (FACTA) "red flags"  rule
  • Gramm-Leach Bliley Act (GLBA) "safeguards" rule
  • FTC "unfair business practices" - poor internal security programs

 

WHAT MAKES US SPECIAL 

ComplianceForge was formed by two former military officers with extensive backgrounds in Information Security and Counter Terrorism / Force Protection (CT/FP). In our ongoing commitment to provide excellent customer service, we feel compelled to make sure businesses have the support they need for their Information Technology and Information Security needs. This is where we want to make a difference and decrease the liabilities associated with being a smaller business. Businesses rely too much on their IT resources to let amateurs provide guidance. The liabilities are too great to take chances, so turn to professionals for your IT security needs. ComplianceForge employs only experienced security professionals and all work is reviewed by a Certified Information Systems Security Professional (CISSP). 

Information Security is necessary for organizations to protect not only their clients, but their employees and partners - we understand that information security affects everyone in business. 

 

INFORMATION SECURITY PROFESSIONALS 

When it comes to information security, we take the topic seriously since this is our profession. We hire only certified IT security professionals. 

  • Certified Information Systems Security Professional (CISSP
  • Certified in Risk and Information Systems Control (CRISC)  
  • Certified Information Systems Auditor (CISA)
  • Certified Information Privacy Professional (CIPP/US)
  • Payment Card Industry Professional (PCIP

Since 2005, we have been selling on-demand Information Security policies and we are proud to be the first company to offer such a service on the Internet. 

 

Background on Documentation Developers

As you can see below, our developers' qualifications are impressive:

  • Certified Information Systems Security Professional (CISSP)
  • Payment Card Industry Professional (PCIP)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Privacy Professional (CIPP/US)
  • Microsoft Certified Systems Engineer (MCSE)
  • Microsoft Certified Information Technology Professional (MCITP)
  • Federal IT Security Professional - Manager (FITSP-M)
  • Certified Computer Forensics Examiner (CCFE)
  • Certified Hacking Forensic Investigator (CHFI)
  • Security+ (CompTIA)
  • Network+ (CompTIA)
  • Master of Business Administration (MBA)
  • Master of Science, Management Information Systems (MIS)
  • Former military officer and Department of Defense (DoD) Information Security consultant
  • Member of MENSA 

Sign up for our Newsletter!

×
×