“ComplianceForge serves as a business accelerator, where we take care of the tedious and time-consuming work that is associated with generating compliance-related cybersecurity documentation. Quite simply, our focus is to provide solutions to reduce the time, cost and complexity for businesses to meet their cybersecurity and privacy needs,” says Beverly Cornelius, partner and co-founder at ComplianceForge. The vision at ComplianceForge is based on the core understanding of the necessity for businesses of all sizes and industries to adopt secure practices to protect their interests, including their customers, employees, and partners.
ComplianceForge offers best-in-class cybersecurity and privacy compliance documentation to address multiple statutory, regulatory and contractual requirements. “There is no such thing a ‘bronze, silver or gold’ level of compliance since a standard is a standard for a reason. That is the premise we follow in developing our documentation products to help our customers have the needed evidence of due care and due diligence for their compliance needs,” says Cornelius. This compliance-focused approach to cybersecurity documentation also means the solutions can scale for any sized business since it is focused on leading industry practices. As evidence of their products’ ability to scale, their clients range from the Fortune 500 down to small businesses.
In 2017, ComplianceForge added the Digital Security Program (DSP) to strengthen its product lineup further. This program also meets customer demand from larger organizations wanting a hybrid solution to address multiple frameworks and to avoid being narrowly constrained by alignment with only a single NIST or ISO cybersecurity framework. The DSP product served as an evolution of their flagship Written Information Security Program (WISP), which is available in either ISO 27002 or NIST 800-53 versions. The DSP addresses gaps in the ISO and NIST frameworks concerning privacy, Internet of Things (OT), Operational Technology (OT), cloud and risk management. Looking into 2018, Cornelius states, “Our innovation efforts will continue to generate much-needed products, including a highly-anticipated Cybersecurity Standardized Operating Procedures (CSOP) product that will provide a massive jumpstart for any company that requires documented processes.”