What certifications does Hack23 AB hold?

Our CEO James Pether Sörling holds industry-leading certifications: CISSP (Certified Information Systems Security Professional) by (ISC)², CISM (Certified Information Security Manager) by ISACA, AWS Certified Security - Specialty for advanced cloud security expertise, and AWS Certified Solutions Architect - Professional for enterprise architecture design. These certifications are backed by 30+ years of hands-on software development and security architecture experience.

How does Hack23's public ISMS benefit clients?

Our public ISMS provides unprecedented transparency that directly benefits clients through: Pre-Engagement Verification to review actual security controls before engagement, Real-World Implementation examples of ISO 27001, GDPR, NIS2 frameworks, Evidence-Based Expertise demonstrated through documentation rather than marketing claims, Best Practices Reference templates for your own security program, and Balanced Transparency with ~70% public documentation and 30% responsibly redacted for operational security.

Where is Hack23 AB located and do you work remotely?

Hack23 AB is based in Gothenburg, Sweden (Org.nr 5595347807). We offer flexible engagement options including: Remote Consulting services delivered across Europe and globally via secure remote channels, In-Person Engagements available in the Gothenburg area and across Sweden, Language Support in English and Swedish, and operate in Central European Time (CET/CEST). Our remote-first approach is backed by secure communication protocols and collaboration tools.

What is the CIA Compliance Manager?

CIA Compliance Manager is our flagship open-source security assessment platform that evaluates Confidentiality, Integrity, and Availability (CIA Triad) with enterprise features including: Automated Assessment with comprehensive evaluation across all three CIA domains, Business Impact Analysis to quantify security risks, Compliance Mapping to NIST, ISO 27001, GDPR, HIPAA, SOC2, and CRA frameworks, Threat Modeling with integrated STRIDE analysis, and Evidence Collection for audits and compliance reporting.

How does Hack23 approach DevSecOps and secure development?

We integrate security seamlessly into development workflows without sacrificing velocity through: CI/CD Integration with automated security testing in every build pipeline, SLSA Level 3 supply chain security with provenance attestation, Shift-Left Security testing early in the development lifecycle, Continuous Compliance with automated validation against security standards, Security as Code with infrastructure and controls in version control, and Open Source Best Practices with OpenSSF Scorecard ratings and CII Best Practices badges.

Cybersikkerhed Rådgivning Sverige | Offentlig ISMS

🌟 Hvorfor vælge Hack23 AB?

Sveriges eneste cybersikkerhedsrådgivning med et fuldt offentligt ISMS, der demonstrerer gennemsigtighed og sikkerhedsmæssig ekspertise, som fremskynder innovation i stedet for at hæmme den.

Kerneforskelle

🔓 Radikal Gennemsigtighed

Sveriges eneste fuldt offentlige informationssikkerhedsstyringssystem (ISMS) med 93 ISO 27001-kontroller, redigerede risikoregistre og komplet politikdokumentation åbent tilgængelig. Se præcis, hvordan vi implementerer sikkerhed—ingen skjulte praksisser, intet sikkerhedsteater.

70% offentligt / 30% ansvarligt redigeret dokumentation
Live sikkerhedsmetrik via OpenSSF Scorecard
Transparente risikovurderinger og behandlingssporing

🎯 Dokumenteret Ekspertise

Over 30 års praktisk erfaring med softwareudvikling og sikkerhedsarkitektur, understøttet af branchens førende certificeringer og virkelige virksomhedsimplementeringer.

Certificeret Information Systems Security Professional (CISSP), Certificeret Information Security Manager (CISM) sikkerhedsprofessionel
AWS Security Specialty & Solutions Architect Pro
Ledede sikkerhedsprogrammer hos Stena AB, Polestar, WirelessCar og andre større virksomheder

⚡ Sikkerhed Fremskynder Innovation

Sikkerhedsaktiveret udvikling der integreres problemfrit i DevSecOps-arbejdsgange. Vi beviser, at korrekte sikkerhedskontroller fremskynder—ikke blokerer—innovation og time-to-market.

SLSA Level 3 forsyningskædesikkerhedsimplementeringer
Automatiseret efterlevelsesvalidering & CI/CD-integration
Zero-trust-arkitekturer med virkelig ydelse

Practical Value

🛠️ Praktiske Løsninger

Ingen sikkerhedsteater—kun implementerbare løsninger testet i produktion. Vores open source-projekter demonstrerer sikkerhedsbest practices med målbare resultater.

Open source-sikkerhedsværktøjer anvendt i produktion
Dokumenterede trusselmodeller & sikkerhedsarkitekturer
Virkelige AWS multi-region resiliensmønstre

📊 Målbare Resultater

Datadrevet sikkerhed med kvantificerbare risikomålinger, automatiseret efterlevelsesovervågning og kontinuerlig forbedring demonstreret gennem offentlig dokumentation.

Kvantitativ risikovurderingsmetodologi
Sikkerheds-KPI'er tilpasset forretningsmål
Automatiseret efterlevelseskortlægning (ISO/NIST/GDPR/NIS2)

🌍 Nordisk Innovationshub

Gøteborg-baseret ekspertise inden for cybersikkerhed, der kombinerer svensk innovationskultur med international virksomheds-erfaring på tværs af sektorerne for bilindustri, logistik og teknologi.

Rådgivning på afstand eller personligt fremmøde (Gøteborg)
Servicelevering på engelsk og svensk
GDPR/NIS2-efterlevelse for det nordiske marked

🛡️ Information Security Governance

Demonstrere sikkerhed gennem gennemsigtighed. Vores offentlige Information Security Management System (ISMS) viser, hvordan virksomhedskvalitetskontroller muliggør innovation, konsulentleverance og produktudvikling. Få adgang til det løbende forbedrede dokumentationssæt og den styrende Information Security Policy, der dækker formål, principper, roller og vores risiko- og compliancemodel.

📋 Public ISMS Repository

Living documentation: policies, redacted registers, resilience & secure development practices (~70% public / 30% responsibly redacted).

🔒 Information Security Policy

Core policy: purpose, scope, principles (Security by Design, Transparency, Continuous Improvement, Business Value), roles & document map.

🔑 Security Services

Professional cybersecurity consulting services delivered remotely or in-person in Gothenburg. Drawing from over three decades of experience in software development and security architecture, we deliver practical security solutions that integrate seamlessly into your development processes without hindering innovation.

🏗️ Security Architecture & Strategy

Enterprise security frameworks, risk assessment, and governance aligned with business objectives.

Virksomheds Sikkerhedsarkitektur
Risk Assessment & Management
Security Strategy Development

☁️ Cloud Security & DevSecOps

AWS security assessment, Infrastructure as Code security, CI/CD integration.

Secure Cloud Solutions (AWS Advanced)
DevSecOps Integration
Container & Serverless Security

🔧 Secure Development & Compliance

SDLC security integration, ISO 27001, GDPR/NIS2 compliance, OSPO management.

CI/CD Security Integration
Regulatory Compliance (GDPR, NIS2, ISO 27001)
Open Source Sikkerhed

View All Services & Expertise Areas →

🚀 Produkter

Åben kildekode leveringsmodel med fuld gennemsigtighed i arkitektur og sikkerhedsdokumentation

🥋 Black Trigram

Precision combat simulator with 70 vital points system, 5 archetypes, and authentic Korean martial arts techniques.

Learn More → 🎮 Play Now

🔐 CIA Compliance Manager

Security assessment platform with CIA Triad evaluation and compliance mapping to NIST, ISO 27001, GDPR, HIPAA, SOC2.

Learn More → 🚀 Try Demo

🔍 Citizen Intelligence Agency

Swedish political transparency OSINT platform with parliamentary monitoring and accountability metrics.

Learn More → ✨ Features

View All Projects & Demos →

💼 CEO James Pether Sörling

Leadership & Expertise

Company Leadership & Security Expert

CEO/Founder of Hack23 AB, James brings over 30 years of information technology experience, specializing in security architecture, cloud security, and compliance. Professional certifications include CISSP, CISM, AWS Security Specialty, and AWS Solutions Architect Professional.

🎯 Key Qualifications:

CISSP CISM AWS Security Specialty AWS Solutions Architect Pro

🏢 Recent Leadership Roles:

Jun 2025-Present: CEO / Founder, Hack23 AB
Oct 2024-Jul 2025: Application Security Officer, Stena AB
Mar 2022-Sep 2024: Information Security Officer, Polestar
Jan 2018-Mar 2022: Senior Security Architect, WirelessCar

LinkedIn Profile Technical Talks Security Blog

Recent Professional Experience

Extensive leadership experience in enterprise security and cloud architecture across major organizations:

Jun 2025-Present: Chief Executive Officer, Hack23 AB - Svensk innovations-hub ledelse, Game Development Strategy
Oct 2024-Jul 2025: Application Security Officer, Stena AB - Risikovurdering, Cloud-sikkerhed, AI-styring
Mar 2022-Sep 2024: Information Security Officer, Polestar - ISMS Implementation, Security Compliance, OSPO Lead

Martial Arts Background

James has extensive experience in traditional Korean martial arts, bringing authentic knowledge to the Black Trigram project:

1999: Black Belt Song Moo Kwan Korea - Traditional Taekwondo certification
2024: 3rd Dan Kukkiwon - World Taekwondo Headquarters certification
2015-2017: Taekwondo Instructor, Tor Taekwondo klub - Teaching children's classes
2002-2003: Taekwondo Instructor, Haga Taekwondo club - Community instruction
1994-1996: Taekwondo Instructor, Hworangi Taekwondo - Early teaching experience

Martial Arts Philosophy: This deep understanding of Korean martial arts traditions directly influences the authentic techniques, cultural respect, and educational value integrated into Black Trigram's combat system.

Career History

Virksomhedsarkitektur Erfaring

Security architecture and consulting roles at leading technology companies:

Jan 2018-Mar 2022: Senior Security Architect, WirelessCar - Sikkerhedsarkitektur, AWS-sikkerhed, Sikker udvikling
Jan 2018-Nov 2018: Consultant, Omegapoint - Security Architect role at WirelessCar
Mar 2017-Jan 2018: Consultant, Consid AB - Open Source Development, CI/CD, AWS
2010-Mar 2017: Cloud Architect, Keypasco - Cloud-sikkerhedsløsninger, Flerlagsarkitektur

Nøglepr æstationer: Grundlagde Hack23 AB i 2025, ledede Open Source Program Office hos Polestar, implementerede virksomhedssikkerhedsarkitekturer, talte ved Javaforum Göteborg, omtalt i Computer Sweden.

Softwareudviklingsbaggrund

Foundation experiences in software engineering and system development:

2008-2009: Consultant, Redpill Linpro - Technical support and client assignments across Sweden, Norway, Denmark
2007-2008: Consultant, Singlegrid (London) - Continuous integration and build management solutions
2006-2007: System Developer, Sky (London) - J2EE projects using XP/Agile development
2003-2005: J2EE Developer, Glu Mobile (London) - Mobile service products development
2000-2002: Software Engineer, Volantis Systems (London) - Multi-channel server product design and implementation

Tidlig Karriere & Militærtjeneste

Foundation experiences that shaped leadership and technical expertise:

1999-2003: Unix Helpdesk/Teaching Assistant, Chalmers University of Technology - System administration and tutorial teaching
Jun-Aug 1999: Visual C++ Programmer, IETV AB - Production control system development
1996-1997: NBC-Defence Group Leader, Svenske væbnede styrker - Leadership and security responsibilities
1993-1996: Founder, Equal Rites BBS - Early networking and system administration (Fidonet node 2:203/454)

🎤 Technical Talks & Presentations

🎙️ Javaforum Göteborg

Presentation on secure architecture patterns and best practices for enterprise Java applications.

▶️ Watch Presentation

🎙️ Shift Left Like A Boss

Sikkerhedspodcast gæsteoptrædener diskuterer DevSecOps-praksisser og forsyningskædesikkerhed.

🎧 Listen to Podcast

Press Coverage

Computer Sweden

This article highlights the innovative use of technology in revealing the activities of politicians. It features James Pether Sörling's work in leveraging data-driven insights to promote transparency in political processes.

Read Article

Riksdag och Departement

En svensk publikation der diskuterer rollen af Citizen Intelligence Agency i overvågning af politikere. Den understreger James Pether Sörlings engagement i at fremme ansvarlighed i politik gennem strategisk brug af teknologi.

Read Article

National Democratic Institute

A comprehensive survey report that underscores the importance of parliamentary monitoring organizations in Sweden. It acknowledges James Pether Sörling's significant contributions to these organizations, reinforcing his commitment to strengthening democratic processes.

View Report

Past Projects

Sonar-CloudFormation-Plugin

SonarQube plugin for analyzing AWS CloudFormation templates with security best practices based on NIST, CWE, and ISO standards.

View All Badges

Quality & Security

GitHub Maven Central

CIA Dashboard

Political activity dashboard for Sweden, offering comprehensive visualizations of parliamentary activity and political performance metrics.

View Documentation

Frequently Asked Questions

Common questions about Hack23's cybersecurity services, public ISMS, and approach to security consulting.

Hvad gør Hack23 AB anderledes end andre cybersikkerhedsrådgivningsfirmaer?

Hack23 AB driver Sveriges eneste fuldt offentlige informationssikkerhedsledelsessystem (ISMS), der demonstrerer radikal gennemsigtighed med 93 ISO 27001-kontroller offentligt dokumenteret. I modsætning til traditionelle rådgivningsfirmaer beviser vi vores sikkerhedspraksis gennem open source-projekter og målbare resultater.

Nøgleforskelle:

Offentligt ISMS: 70% af vores sikkerhedskontroller er åbent tilgængelige til gennemgang
Open Source: Alle vores sikkerhedsværktøjer og frameworks er tilgængelige på GitHub
Dokumenteret Track Record: OpenSSF Scorecard-vurderinger og CII Best Practices-badges
Sikkerhedsaktiveret Innovation: Vi viser, at korrekt sikkerhed fremskynder snarere end hæmmer innovation

What cybersecurity services does Hack23 AB offer?

We provide comprehensive cybersecurity consulting services including:

Security Architecture & Strategy: Design and implementation of robust security frameworks
Cloud Security & DevSecOps: AWS specialty with SLSA Level 3 supply chain security
Secure Development & Code Quality: Integration of security into CI/CD pipelines
Compliance & Regulatory: ISO 27001, GDPR, NIS2, CRA implementation and auditing
Open Source Security: OSPO management and supply chain risk assessment
Security Culture & Training: Building security awareness and best practices

Alle tjenester leveres enten eksternt eller personligt i Gøteborg, Sverige, og tilbydes på engelsk og svensk.

Hvilke certificeringer har Hack23 AB?

Vores CEO James Pether Sörling har branchens førende certificeringer:

CISSP: Certified Information Systems Security Professional fra (ISC)²
CISM: Certified Information Security Manager fra ISACA
AWS Certified Security - Specialty: Avanceret cloud-sikkerhedsekspertise
AWS Certified Solutions Architect - Professional: Enterprise-arkitekturdesign

Disse certificeringer understøttes af over 30 års praktisk erfaring med softwareudvikling og sikkerhedsarkitektur, hvilket demonstrerer dyb teknisk ekspertise kombineret med strategisk sikkerhedsledelse.

Hvordan gavner Hack23s offentlige ISMS kunderne?

Vores offentlige ISMS giver enestående gennemsigtighed, der direkte gavner kunderne:

Forudgående Verifikation: Gennemgå vores faktiske sikkerhedskontroller, risikovurderinger, politikker og overholdelses-dokumentation før engagement
Reel Implementering: Se dokumenteret implementering af ISO 27001, GDPR, NIS2 og andre frameworks
Evidensbaseret Ekspertise: Vores ekspertise demonstreres gennem dokumenteret evidens snarere end marketingpåstande
Reference til Bedste Praksis: Brug vores offentlige ISMS som skabelon for dit eget sikkerhedsprogram
Afbalanceret Gennemsigtighed: ~70% offentlig dokumentation med 30% ansvarligt redigeret for operationel sikkerhed

Besøg vores Offentlige ISMS Repository for at udforske vores sikkerhedskontroller og dokumentation.

Hvor ligger Hack23 AB, og arbejder I eksternt?

Hack23 AB er baseret i Gøteborg, Sverige (Org.nr 5595347807). Vi tilbyder fleksible samarbejdsmuligheder:

Fjernkonsulenttjenester: Tjenester leveret på tværs af Europa og globalt via sikre eksterne kanaler
Personlige Møder: Tilgængelige i Gøteborg-området og på tværs af Sverige
Sprogunderstøttelse: Professionelle tjenester på engelsk og svensk
Tidszone: Centraleuropæisk tid (CET/CEST)

Vores fjern-først tilgang understøttes af sikre kommunikationsprotokoller og samarbejdsværktøjer, hvilket sikrer effektiv levering uanset lokation.

Hvad er CIA Compliance Manager?

CIA Compliance Manager er vores flagskib open source-platform til sikkerhedsvurdering, der evaluerer Fortrolighed, Integritet og Tilgængelighed (CIA-triaden) med enterprise-funktioner:

Automatiseret Vurdering: Omfattende evaluering af sikkerhedskontroller på tværs af alle tre CIA-domæner
Forretningspåvirkningsanalyse: Kvantificer sikkerhedsrisici og deres forretningspåvirkning
Compliance-Kortlægning: Automatisk mapping til NIST, ISO 27001, GDPR, HIPAA, SOC2 og CRA frameworks
Trusselsmodellering: Integreret STRIDE-analyse og risikovisualisering
Indsamling af Bevismateriale: Automatiseret dokumentation til audits og compliance-rapportering

Lær mere om CIA Compliance Manager funktioner og hvordan det demonstrerer vores praktiske tilgang til sikkerhedsautomatisering.

Hvordan griber Hack23 DevSecOps og sikker udvikling an?

Vi integrerer sikkerhed problemfrit i udviklingsworkflows uden at ofre hastighed:

CI/CD Integration: Automatiseret sikkerhedstest i hver build-pipeline
SLSA Niveau 3: Forsyningskædesikkerhed med proveniens-attestering og build-integritet
Shift-Left Sikkerhed: Sikkerhedstest tidligt i udviklingslivscyklussen
Kontinuerlig Overholdelse: Automatiseret validering mod sikkerhedsstandarder
Sikkerhed som Kode: Infrastruktur og sikkerhedskontroller defineret i versionskontrol
Open Source Bedste Praksis: OpenSSF Scorecard ratings og CII Best Practices badges

Vores open source-projekter demonstrerer real-world DevSecOps-implementering, der opretholder udviklingshastighed samtidig med at sikre sikkerhed. Besøg vores GitHub organisation for at se vores sikkerhedsautomatisering i aktion.

🔍 Gratis Tjekliste til Sikkerhedsvurdering

Download vores omfattende 95-punkts sikkerhedsvurderingsguide. Vurder din organisations sikkerhedsniveau på tværs af 7 kritiske domæner: Arkitektur, Adgangskontrol, Databeskyttelse, Netværkssikkerhed, Sårbarhedsstyring, Incident Response og Compliance.

Baseret på ISO 27001, NIST CSF og CIS Controls • Brugt af Enterprise Sikkerhedsteams

Få Din Gratis Tjekliste

📧 Kontakt Os

Har du et spørgsmål om vores tjenester eller vil diskutere dine sikkerhedsbehov? Vi vil gerne høre fra dig!

Måder at Kontakte Os På

Email: info@hack23.com
LinkedIn: Hack23 Virksomhedsside
LinkedIn: CEO
GitHub: Open Source Projekter