Thales eSecurity News Release

Vormetric Announces the Addition of 5PEG SECURITY, an Official PCI Auditor and Qualified Data Security Company (QDSC), to Its Payment Card Industry (PCI) Partner Program

Vormetric Continues Momentum in Forming Partnerships with QDSCs to Help Companies Comply With the PCI DSS

LAS VEGAS, NV - April 18, 2006 - ETA ANNUAL MEETING & EXPO -- Vormetric, a leading provider of security solutions for protecting sensitive data from unauthorized access, today announced that 5PEG SECURITY, an official Qualified Data Security Company (QDSC), joined its PCI partner program as a referral partner. 5PEG SECURITY is a qualified assessor for the PCI program and has been involved in that program since its inception in 2001. They have successfully validated PCI compliant service providers, merchants, and payment applications, and their knowledge in the payment industry covers all aspects from the card swipe (or card number entry), to transaction settlement and credit card data storage (MAG, CVV2, PVV data).

Vormetric's partner program gives PCI QDSCs like 5PEG SECURITY preferred access to Vormetric's customer-proven PCI data security products, expertise, training, and support. QDSC customers including merchants, acquirers, and service providers benefit by knowing that their assessor has knowledge and special access to a proven, costeffective alternative to address their unique PCI needs.

"5PEG SECURITY strives to educate and guide clients in compliance and security 'best practices' utilizing our years of experience with data security," said John Moon, CEO of 5PEG SECURITY, Inc. "Vormetric's approach to encryption, access control, auditing, and host integrity provides a solid offering and solution to customers with compliance needs in these areas."

The PCI Data Security Standard is a compliance initiative agreed upon by the payment card industry (Visa USA, MasterCard International, Amex and Discover) that requires best-practice security standards for merchants and service providers that handle payment card information. The standard involves on-site audits, self-administered audits, and network scanning, which apply to merchants and service providers on various levels according to the volume of transactions each facilitates. Only qualified auditors (QDSCs) may conduct on-site PCI audits.

Vormetric's PCI Partner Program is managed and supported by a seasoned team of proven channel business leaders, including Vormetric's Director of Industry Marketing, Heather Mark, PhD, CISSP, who have built and managed highly successful PCI programs in the past. This team created the program with its partners' needs as the driving force.

"We are very pleased to have 5PEG SECURITY as part of our PCI Program. Partnerships with quality companies like 5PEG SECURITY are crucial to our company's success," said Reed Taussig, CEO of Vormetric, Inc. "With the latest credit card data breaches making headlines and major news this past month, forward thinking companies like 5PEG SECURITY realize that data protection must include encryption and access control to data -- exactly what we help provide. This partnership is a great opportunity for both QDSCs like 5PEG SECURITY and Vormetric to mutually solve customer data protection problems and grow our businesses."

The new Vormetric Partner program offers two distinct categories of membership: Referral and Reseller. By being a Referral Partner, companies do not necessarily have to have an exclusive relationship with Vormetric, just refer Vormetric technology if it seems to be the best fit for the situation. Each category offers its own corresponding benefits and requirements aimed at helping partners increase revenues and enhance their market position. The program is now available to solution providers in North America and Europe. Interested partners should contact Dr. Heather Mark at pci@vormetric.com for more information.

About Vormetric

Vormetric is the leader in data security management and enforcement solutions. Vormetric Data Security provides a centrally managed, high performance, easy-toimplement, distributed solution that solves the pressing compliance, security and risk management challenges facing today’s enterprises and government agencies. Vormetric’s application- and database-transparent solution outperforms other offerings to provide stronger and broader data security at a fraction of the management and implementation cost.

Vormetric’s more than 230 customers represent the world’s most trusted brands in financial services, retail, manufacturing, healthcare, media, energy and telecom industries as well as highly security conscious government agencies.

Vormetric technology has received strong market validation for its innovative approach to data security, including:

  • Selection by IBM as the core database encryption solution for DB2 and Informix on LinuxTM, Unix® and Windows
  • Computerworld Technology Innovation Award
  • Selection by Symantec to provide the Symantec Veritas NetBackupTM Media Server Encryption Option
  • Partnership with Oracle to secure the execution environment for Oracle® Database Vault
  • Five patents issued and nine patents pending

Vormetric is a trademark of Vormetric, Inc. All other names mentioned are trademarks, registered trademarks or service marks of their respective owners.