About Us

BlackHat Consultants - COMPLIANCEFORGE.COM

ComplianceForge.com is a division of BlackHat Consultants, LLC. This is our eCommerce platform. 

complianceforge-blackhat-consultants-oregon-written-information-security-program.jpg complianceforge-information-security-compliance-documentation.jpg complianceforge-oregon-consumer-identity-theft-protection-act-compliance.jpg
BlackHat Consultants, LLC Compliance-Focused Documentation Made In The USA
ComplianceForge.com is a division of BlackHat Consultants, LLC. This is our eCommerce platform. There are no such things as "Bronze, Silver or Gold" levels of compliance - a standard is a standard for a reason and we understand that when we develop our documentation. We are headquartered just outside Portland, Oregon in the heart of the Silicon Forest, which is home to a vibrant hi-tech business community. 



We are here to help businesses that lack this special knowledge & experience. Simple truths that we believe in include: 

  • Information security is too important to be left to amateurs 
  • Every business needs comprehensive policies & standards 
  • Our solution should be affordable and scalable to encourage growth 
  • Documentation should be written in business-friendly language 

Our vision at BlackHat is based on the core understanding of the necessity for businesses of all sizes and industries to adopt security practices to protect their interests, including their customers, their employees, and their partners. 



We are a business accelerator - our focus is to provide solutions that reduce the time for businesses to meet their cybersecurity needs. Many of our solutions are about 1/10th of the cost as compared to hiring a consultant to custom-develop documentation and our solutions are delivered within one business day. 

Information security breaches and non-compliance fines have the ability to close a business for good. When it comes to NIST 800-171 and NISPOM, companies can lose contracts or be prevented from being eligible to bid.

  • NIST 800-171
  • Payment Card Industry Data Security Standard (PCI DSS) 
  • State laws such as MA 201 CMR 17.00 
  • Fair & Accurate Credit Transactions Act (FACTA) "red flags"  rule
  • Gramm-Leach Bliley Act (GLBA) "safeguards" rule
  • FTC "unfair business practices" - poor internal security programs

We are experts in our field and have done the heavy lifting for you, so that you can focus on what you do best, which is growing your business and not having to worry about creating documentation for requirements you do not understand.



When it comes to information security, we take the topic seriously since this is our profession. We hire only certified IT security professionals. 

  • Payment Card Industry Professional (PCIP) 
  • Certified Information Systems Security Professional (CISSP) 
  • Certified in Risk and Information Systems Control (CRISC)  
  • Certified Information Privacy Professional (CIPP/US)

Since 2005, we have been selling on-demand Information Security policies and we are proud to be the first company to offer such a service on the Internet. 



BlackHat was formed by two former military officers with extensive backgrounds in Information Security and Counter Terrorism / Force Protection (CT/FP). In our ongoing commitment to provide excellent customer service, we feel compelled to make sure businesses have the support they need for their Information Technology and Information Security needs. This is where we want to make a difference and decrease the liabilities associated with being a smaller business. Businesses rely too much on their IT resources to let amateurs provide guidance. The liabilities are too great to take chances, so turn to professionals for your IT security needs. BlackHat employs only experienced security professionals and all work is reviewed by a Certified Information Systems Security Professional (CISSP). 

Information Security is necessary for organizations to protect not only their clients, but their employees and partners - we understand that information security affects everyone in business. 


Background on Documentation Developers

As you can see below, our developers' qualifications are impressive:

  • Certified Information Systems Security Professional (CISSP)
  • Payment Card Industry Professional (PCIP)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Privacy Professional (CIPP/US)
  • Microsoft Certified Systems Engineer (MCSE)
  • Microsoft Certified Information Technology Professional (MCITP)
  • Federal IT Security Professional - Manager (FITSP-M)
  • Certified Computer Forensics Examiner (CCFE)
  • Certified Hacking Forensic Investigator (CHFI)
  • Security+ (CompTIA)
  • Network+ (CompTIA)
  • Master of Business Administration (MBA)
  • Master of Science, Management Information Systems (MIS)
  • Former military officer and Department of Defense (DoD) Information Security consultant
  • Member of MENSA