Name: Joe Campana
Occupation: Identity risk management specialist with J. Campana & Associates of Madison
Web site: www.jcampana.com

Identity theft is one of the fastest-growing crimes with millions of new victims each year.

I provide services to help decrease privacy-related risks for small- and medium-sized businesses, their employees and clients.
I provide training in best practices of privacy risk management including risk assessment audits, compliance documentation, employee education and continuing audits.

A study conducted at the Michigan State University School of Criminal Justice determined that more than 70 percent of identity theft originates in the workplace.

Two years ago, I decided to shift the focus of my company to businesses, schools and nonprofit organizations, rather than individuals. Individual consumers usually don't take action about identity theft until they are victims of it.

I've written many books and articles on identity theft and have just released my latest book, "Privacy Makeover The Essential Guide to Best Practices."

The book is a do-it-yourself guide for enterprises that don't have a lot of time to put a compliance program of things they should be doing.

I came up with the concept of a DIY book that the business owner could read during the weekend and then start implementing the ideas during the business week.

The first step is to assess the risks the business has in respect to protecting information. Is information too accessible? Do they lock files and doors?

The second step is documentation. What happens if there is a breach in security? What is the response plan?

The third step is employee training. This is where I'd like to be involved to help the business train their employees so that all issues are covered and explained completely.

The fourth step is a business review of the plan and an annual audit to ensure that it's working.

I've had a diverse career as the CEO of a large corporation. I've been in academia, spent time working in a think tank in Washington, D.C. and was a trainer for an international legal services provider.

I attended a presentation on identity theft and that's when I began studying privacy and information security and decided to make this my career. I received my certification from the International Association of Privacy Professionals as an identity theft risk management specialist and information privacy professional, one of only 155 people worldwide to have this distinction.

What I Do invites people to tell in their own words what they do to make a living. The column runs every Tuesday. To suggest someone to feature, contact Jill Carlson at