About Us

We Provide Award-Winning Solutions To Businesses Of All Sizes & Industries

In 2017, CIOReview magazine ranked ComplianceForge in the Top 20 Most Promising Compliance Solution Providers so you can purchase our products with confidence. This national recognition demonstrates the level of quality you can expect from our cybersecurity and privacy solutions.

complianceforge-cioreview-award-top-20-most-promising-compliance-solution-providers-2017.jpg

Cybersecurity Documentation Done Right 

We are specialists within the cybersecurity profession, where our focus is on Governance, Risk and Compliance (GRC). Our comprehensive documentation helps companies become and stay compliant with cybersecurity and privacy requirements. 

compliance-forge-editable-cybersecurity-documentation.jpg complianceforge-information-security-compliance-documentation.jpg complianceforge-oregon-consumer-identity-theft-protection-act-compliance.jpg
Compliance Forge, LLC (ComplianceForge) Compliance-Focused Documentation Veteran-Owned & Made In The USA
We focus on writing cybersecurity documentation so that you can focus on what you do best - growing your business! Our customers are in good company, since our products are used by many of the most well-known companies in the country, as well as many international companies. There are no such things as "Bronze, Silver or Gold" levels of compliance - a standard is a standard for a reason and we understand that when we develop our documentation products to help our customers have evidence of due care and due diligence for their compliance needs.  We are proud to be a Veteran-Owned Small Business (VOSB). Our headquarters is located just outside Portland, Oregon in the heart of the "Silicon Forest," which is home to a vibrant hi-tech business community. 

Our Beliefs 

We are here to help businesses that lack this special knowledge & experience. Simple truths that we believe in include: 

  • Information security is too important to be left to amateurs;
  • Every business needs comprehensive policies & standards;
  • Our solution should be affordable and scalable to encourage growth; and
  • Documentation should be written in business-friendly language.

Our vision at ComplianceForge is based on the core understanding of the necessity for businesses of all sizes and industries to adopt security practices to protect their interests, including their customers, their employees, and their partners. 

What Makes Us Special 

We are a business accelerator - our focus is to provide solutions that reduce the time for businesses to meet their cybersecurity needs. Many of our solutions are about 1/10th of the cost as compared to hiring a consultant to custom-develop documentation and our solutions are delivered within one business day. 

ComplianceForge was formed by two former military officers with extensive backgrounds in Information Security and Counter Terrorism / Force Protection (CT/FP). In our ongoing commitment to provide excellent customer service, we feel compelled to make sure businesses have the support they need for their Information Technology and Information Security needs. This is where we want to make a difference and decrease the liabilities associated with being a smaller business. Businesses rely too much on their IT resources to let amateurs provide guidance. The liabilities are too great to take chances, so turn to professionals for your IT security needs. 

Information Security is necessary for organizations to protect not only their clients, but their employees and partners - we understand that information security affects everyone in business. 

Which Industries Have We Served?

 Our Products Are Used By Some Of the Biggest Names In The Industry

We've been writing quality security documentation since 2005. In that time, we've served clients across nearly every industry and size, both domestically and internationally. Our clients range from well-known Fortune 100 corporations to small businesses, both within the US and abroad. We've proved time and again that our cybersecurity documentation is flexible enough to work in any organization and can scale accordingly. 

Since we respect the privacy of our clients, we do not provide the names of the companies we serve. Many of the well-known and trusted brands that you use on a daily basis are our clients and we are very proud of that fact. In many ways, we are corporate America's "dirty little secret" since we are a leading source for professionally-written cybersecurity documentation, yet we stay in the shadows as quiet professionals. Below is a list of industries where our products have been successfully implemented, so you will be in good company as a client of ours:

Financial
- Certified Public Accountants (CPAs)
- Financial Planners & Wealth Managers
- Banks & Credit Unions
- Bookkeepers


Technology Companies
- Hardware Manufacturers
- Consultants
- Software Companies
- Website Developers
- Managed Service Providers
- Auditors
- Cybersecurity 


Medical
- Hospitals
- Doctors
- Dentists
- Physical Therapists
- Chiropractors
- Medical Billing
- Elder Care Facilities

Consultants
- Business Analysts
- Management Consultants
Government
- Defense Contractors (DoD)
- Federal Government Contractors
- Federal Government Agencies
- State Government Agencies
- Local Municipalities
- Regional Airports
- Law Enforcement

Legal
- Lawyers
- Court Reporters
- Privacy Professionals


Real Estate
- Brokers
- Real Estate Offices
- Title Companies
- Developers
- Property Management


Utilities
- Oil & Natural Gas
- Coal
- Electric
- Nuclear



Construction & Manufacturing
- Commercial
- Residential
- Architects
- Retail Products
- Fabrication
- Firearms Industry

Hospitality & Food Services
- Hotels / Resorts
- Restaurants
- Casinos / Gaming
- Coffee Shops

Retail (B&M) & Services
- Health Clubs / Gyms
- Credit Monitoring / ID Theft
- Janitorial
- Human Resources / Recruiting

Non-Profits & Associations
- Chambers of Commerce
- Clubs
- Non-Profits

 

 

 

Focus On The Needs of Business

Information security breaches and non-compliance fines have the ability to close a business for good. When it comes to NIST 800-171, FAR and NISPOM, companies can lose contracts or be prevented from being eligible to bid. We are experts in our field and have done the heavy lifting for you, so that you can focus on what you do best, which is growing your business and not having to worry about creating documentation for requirements that you are not experienced with:

  • NIST 800-171
  • DFARS
  • FAR
  • NISPOM
  • Payment Card Industry Data Security Standard (PCI DSS) 
  • State laws such as MA 201 CMR 17.00 
  • Fair & Accurate Credit Transactions Act (FACTA) "red flags"  rule
  • Gramm-Leach Bliley Act (GLBA) "safeguards" rule
  • FTC "unfair business practices" - poor internal security programs

Cybersecurity & Privacy Professionals 

When it comes to information security, we take the topic seriously since this is our profession. We hire only certified IT security professionals. 

  • Certified Information Systems Security Professional (CISSP
  • Certified in Risk and Information Systems Control (CRISC)  
  • Certified Information Systems Auditor (CISA)
  • Certified Information Privacy Professional (CIPP/US)
  • Payment Card Industry Professional (PCIP

Since 2005, we have been selling on-demand Information Security policies and we are proud to be the first company to offer such a service on the Internet. 

Background on Documentation Developers

As you can see below, our developers' qualifications are impressive:

  • Certified Information Systems Security Professional (CISSP)
  • Payment Card Industry Professional (PCIP)
  • Certified in Risk and Information Systems Control (CRISC)
  • Certified Information Privacy Professional (CIPP/US)
  • Microsoft Certified Systems Engineer (MCSE)
  • Microsoft Certified Information Technology Professional (MCITP)
  • Federal IT Security Professional - Manager (FITSP-M)
  • Certified Computer Forensics Examiner (CCFE)
  • Certified Hacking Forensic Investigator (CHFI)
  • Security+ (CompTIA)
  • Network+ (CompTIA)
  • Master of Business Administration (MBA)
  • Master of Science, Management Information Systems (MIS)
  • Former military officer and Department of Defense (DoD) Information Security consultant
  • Member of MENSA 

Find Out Exclusive Information On Cybersecurity