Oracle has provided robust compliance capabilities for each of its enterprise application lines and recognized that broad GRC requirements extend across multiple business units, geographies, mandates and enterprise applications. Oracle now delivers the industry's most comprehensive offering to manage strategic, financial, technology and operational risk across the enterprise regardless of compliance mandate. For example, the suite includes support for international financial regulations including OMB A-123 in the U.S., Multilateral Instrument 52-109 in Canada, JSOX in Japan, KSOX in Korea or the Turnbull Report in the U.K. With the solutions attained through the acquisition of Stellent, the Oracle GRC applications suite allows organizations to collaboratively define and approve policies, procedures and controls throughout the enterprise and map organizational business processes and structures to the policy and control environment. Customers can manage their risks and controls holistically, breaking down compliance management silos.

"We've experienced clear process improvements and increased efficiencies from our implementation of the Sarbanes-Oxley solution from Stellent," said Danny Waxenberg, Assistant Vice President, Internal Controls at Unum, the largest provider of individual and group income protection insurance in the U.S. and the U.K. "We are pleased that Oracle is protecting our investment in the application and look forward to leveraging the latest capabilities from Oracle Governance Risk and Compliance Manager."

Most Comprehensive GRC Platform
Increasingly, organizations are seeking to meet their GRC requirements through an integrated platform that improves the quality and effectiveness of GRC programs, and provides the overarching mechanisms to understand and manage risk. Oracle's GRC platform intends to include a comprehensive framework for managing GRC programs with visibility to risks across the enterprise using Oracle Fusion Governance, Risk and Compliance Intelligence (Oracle Fusion GRC Intelligence), end-to-end GRC process management through Oracle GRC applications and security of information assets at all levels with Oracle GRC platform.

With Oracle Fusion GRC Intelligence, Oracle plans to deliver unparalleled visibility with role-based intelligence for risk and control performance and aligns GRC initiatives with strategic organizational objectives by tying GRC metrics to strategic planning and budgeting. The Oracle GRC applications suite supports critical cross-industry processes for global trade management, financial compliance, IT governance, workforce governance and supply chain compliance. Best-practice frameworks such as COSO and CoBiT are integrated so that customers can rationalize controls against processes, regulations, objectives and risks within an organizational framework.

Oracle's GRC platform spans critical security technologies covering identity management, data encryption and label-based security as well as enterprise change management, consolidated and secure data audit and content and records management capabilities to categorize, store, retain and manage critical GRC information. Oracle GRC infrastructure works hand-in-glove with Oracle GRC applications. For example, Oracle Database Vault, which restrictsprivileged user access, is certified to work with Oracle's PeopleSoft Enterprise applications providing secure PeopleSoft Enterprise configurations. In addition, Oracle Transparent Data Encryption is certified to work with the Oracle E-Business Suite for protecting the privacy of sensitive application data.

New Innovation Expands GRC Footprint
Oracle announced an expanded GRC applications suite that allows customers to centrally manage policy, procedure and control documentation; risk assessment and control monitoring; risk-intelligent reporting; and secured corporate information. The Oracle GRC application suite will work across the Oracle E-Business Suite, Oracle's PeopleSoft Enterprise, Oracle's JD Edwards and Oracle's Siebel CRM applications, as well as custom-developed or third-party applications. New capabilities include:

* Oracle Fusion GRC Intelligence plans to provide out-of-the-box dashboard and reports to help companies manage organizational performance, react quickly to risk events, monitor compliance mandates and deliver audit-ready reporting. Oracle Fusion GRC Intelligence plans to include clear insight into GRC activities at all levels within an organization, from the boardroom to line managers.

* Oracle Governance, Risk, and Compliance Manager monitors business process risk and control performance across the enterprise, automatically highlighting areas of control weakness and initiating corrective actions with automated loss and investigations management.

* Oracle Application Access Controls delivers a library of segregation of duties (SOD) controls, including more than 200 rules for the Oracle E-Business Suite and provides the ability to detect and prevent access control violations.

* Oracle Application Configuration Controls monitors more than 500 internal controls for the Oracle E-Business Suite, provides continuous monitoring for changes in application configuration controls, and includes the ability to set up auditing parameters to enforce organizational tolerances across multiple instances.

Dedicated Protection of Existing Customer Investments
Under its "Applications Unlimited" program, Oracle will continue to support and provide enhancements to its existing control and risk management solutions, Oracle Internal Controls Manager, PeopleSoft Enterprise Internal Controls Enforcer and Stellent Sarbanes-Oxley Solution.

"Executives everywhere recognize that business performance is predicated on business control and accountability," said Oracle Group Vice-President of ERP Application Strategy Chris Leone. "It's not enough to do well - you must also prove that your underlying data and processes are secure and under control. Oracle's GRC platform helps to sustain organizational accountability with integrated business processes, information security and content management to effectively and flexibly address multiple GRC requirements."

As an example of Oracle's continuing commitment to GRC customers, the company recently formed the Oracle GRC Strategy Council where customers will provide input and feedback to the GRC roadmap and product direction. This council was created to help Oracle understand and prioritize market challenges and customer requirements.

About Oracle
Oracle (NasdaqGS: ORCL) is the world's largest enterprise software company. For more information about Oracle, please visit our Web site at http://www.oracle.com

This announcement is provided to you solely for information purposes, is not a commitment to deliver any material, code, or functionality, and should not be relied upon in making purchasing decisions. Many factors can materially affect Oracle's product development plans and the nature and timing of future product releases. The development, release, and timing of any features or functionality described remains at the sole discretion of Oracle. This information may not be incorporated into any contractual agreement with Oracle or its subsidiaries or affiliates. Oracle specifically disclaims any liability with respect to this information.

Trademarks
Oracle, JD Edwards, and PeopleSoft are registered trademarks of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.