William Yang - Projects
Bill has a variety of interests. Outside of the provision of
consulting services, Bill's primary areas of professional interest
Bill started a business in 2004, WDY Enterprises, LLC, an
Ohio-based corporation for his business activities. As with all small
businesses, he's always involved in some kind of business development
activity. If you think that you would benefit from Bill's experience
and expertise in business, security, process, or technology, please
contact us via e-mail.
Public Outreach, Instruction, and Training about Security
As an internationally quoted expert in information security, Bill
regularly performs outreach and instruction to raise awareness and
train others about security. Since the beginning of his professional
career, Bill has provided technical instruction, to inform people of
all backgrounds about the ways in which technology, and security work
in our society. His focus has always been on maintaining awareness of
the social, economic, and ecological workings of the technology in an
Internet environment, but events have forced an expansion into the
politicization of security and the hindrances on our normal lives that
come from unnecessary fear, uncertainty, and doubt.
For more information about some of the talks Bill has given, please
see his talks and tutorials page.
Research: Regulatory Compliance
Having developed significant expertise in applying the technical
requirements of the Health Insurance Portability and Accountability
Act of 1996 with the State of Ohio, Bill is now building a deep
understanding of the Financial Services Modernization Act of 1999
("Graham-Leach-Bliley" or "GLB") and the Public Company Accounting and
Investor Protection Act of 2002 ("Sarbanes-Oxley") in terms of how
they require new safeguards and protections to ensure the
confidentiality, integrity, and availability of information.
Research: Security Governance
After his time as the State IT Security Policy Officer for the
State of Ohio, Bill has been exploring models and approaches for
security governance for organizations.
Research: Replicatable Risk Assessment Methodology
Bill has focused significant energy on replicatable risk assessment
methods, since risk considerations should drive all security
Small and medium businesses tend to purchase IT devices to meet
specific missions and needs. Bill is designing and implementing
systems to support the business needs of organizations, and seeking to
implement them at price points lower than traditional implementations.
Research: Unsolicited bulk electronic mail (spam)
Due to the rising cost of receiving, processing, and complaining
about e-mail which is intrusive, unwelcome, and unsolicited, we've
begun to study the phenomenon of 'spam' in an attempt to find good,
standards-based reasons and methods to control the cost, as well as to
find a way to accomodate legitimate commercial interests (who,
presently, tend to dominate the spam market), so that responsible
marketing methods can play the important role they must for the
Internet to continue to be successful.
PUBLICATION: I do not like Green Eggs and Spam.
Developing Cooperation for Security
For most of his career, Bill been a leader in bringing groups
together to cooperate in the field of security. He co-founded the
National InfraGard organization, served on its first provisional
national executive committee, was elected by the national membership
and served as the first Chairman of the organization. He also
co-founded the AEGIS Network security group and the Columbus chapter
of InfraGard, where he also served as chair. He remains active with
InfraGard and the ISSA.
Go back to the prior page