Oracle Press Release

Oracle Unveils Enterprise Security and Governance, Risk and Compliance Initiative for Partners

Enables Oracle Partners to Deliver Comprehensive Solutions to Help Customers Address Regulatory Mandates, Organizational Complexity and Risk Management Requirements

November 8, 2007

News Facts

Recognizing that customers across the globe are increasingly viewing information security, and governance, risk and compliance (GRC) as a critical long-term investment in sustainability, Oracle today announced it is launching the Oracle Enterprise Security and GRC Initiative for partners to meet market demand.

The Enterprise Security and GRC Initiative is one of the first global technology vendor and service provider initiatives of its kind. The initiative will help partners further develop and promote their unique value-added products and services that are critical to meeting customer requirements. Available to select members of the Oracle PartnerNetwork who deliver security and/or compliance solutions or services complementary to Oracle's, the initiative helps create a partner ecosystem offering world-class, integrated, comprehensive solutions and services for access control, data protection and privacy and compliance management, based on Oracle Applications and technology.

"We are committed to enabling our partners to be successful in developing services and solutions in a world with increasing regulatory mandates, organizational complexity and risk management requirements," said Oracle Senior Vice President, Worldwide Alliances and Channels, Doug Kennedy. "With this initiative, we are giving current partners a new way to achieve a return on their partnership investment, and prospective partners an exciting new opportunity to go to market with an industry leader in enterprise security and GRC."

Expanded Ecosystem Driving Value for Partners and Customers

System Integrators (SIs), Independent Software Vendors (ISVs), Platform and Infrastructure Vendors and Management Consultants are already leveraging the new Enterprise Security and GRC Initiative. Together with Oracle, these partners are delivering services and solutions that help customers reduce cost and complexity by managing multiple security and GRC requirements within a single platform, safeguard brand and reputation through information reliability and data protection, and gain visibility to the status of GRC activities across the enterprise. Benefits initiative members receive include participation in solution validation and solution mapping activities, targeted sales and marketing opportunities and participation in select, customer-facing events.

Customers today are recognizing benefits from implementing Oracle-based solutions from key partners. The combined solutions and services have enabled customers to achieve automated compliance, user provisioning and enforced access control, automated financial and environmental compliance reporting, restricted access to sensitive data - even from privileged users, and more. With the new initiative, Oracle partners can also help clients rationalize their current position and exposure and map solutions to help fill security and compliance gaps.

"Protecting data and ensuring information integrity are two of the highest priorities for companies today," said Protiviti's Information Solutions Leader, Jay Thompson. "Oracle's Enterprise Security and GRC Initiative will provide enabling technology to assist in building Protiviti GRC solutions for our Oracle clients."

"As today's world - and the business potential it offers - becomes more digital and sophisticated, so do the risks involved. Enterprises are realizing that, in order to truly survive and flourish, they must start treating risk, governance and regulatory compliance in a consolidated and holistic manner across the organization and the customer base," said Christopher Young, Vice President and General Manager, Identity and Access Assurance Group, RSA, The Security Division of EMC. "Oracle's development of the Enterprise Security and GRC Initiative further validates that the market is trending toward recognizing information security as an information management problem, and one that needs to be approached not just strategically but culturally within organizations. Addressed in this way and by taking advantage of the resources that initiatives like Oracle's provide, security can serve as the platform for innovation and other, dynamic new business behaviors - and help organizations achieve their full potential."

According to AMR Research, governance, risk and compliance spending will reach US$29.9 billion in 2007, an increase of 8.5 percent over 2006. In 2008, this number will increase an additional 3.6 percent to US$31 billion. i

This year at Oracle OpenWorld San Francisco, the Security, Risk and Compliance Pavilion (Booth 3830 in Moscone West) will showcase partner solutions that enable companies to secure their enterprise and to ensure sustainable compliance for today's business requirements. Visitors to the Pavilion will learn about the latest trends in security, governance, risk and compliance and to experience live demonstrations.

About the Oracle PartnerNetwork

Oracle PartnerNetwork is a global business network of more than 19,500 companies who deliver innovative software solutions based on Oracle software. Through access to Oracle's premier products, education, technical services, marketing and sales support, the Oracle PartnerNetwork program provides partners with the resources they need to be successful in today's global economy. Oracle partners are able to offer their customers leading-edge solutions backed by Oracle's position as the world's largest enterprise software company. Partners who are able to demonstrate superior product knowledge, technical expertise and a commitment to doing business with Oracle qualify for the Certified Partner levels. http://oraclepartnernetwork.oracle.com.

About Oracle

Oracle (NASDAQ: ORCL) is the world's largest enterprise software company. For more information about Oracle, please visit our Web site at http://www.oracle.com.

Trademarks

Oracle is a registered trademark of Oracle Corporation and/or its affiliates. Other names may be trademarks of their respective owners.
i AMR Research Analyst, John Hagerty in the report, Market Demand for Governance, Risk Management, and Compliance (GRC), 2007-2008.

Contact Info

Amy Grady
Oracle
+1.650.506.6175
amy.grady@oracle.com

Susie Penner
Oracle
+1.650.506.1973
susanne.penner@oracle.com