SANTA CLARA, Calif.—(BUSINESS WIRE)—September 17, 2008— Vormetric™, Inc., the leader in data security management and enforcement solutions, today announced the introduction of the Vormetric Database Security Packs, which deliver proven, customer-tested data security, key security and separation of duties for Oracle and Microsoft SQL Server database environments. The Vormetric Database Security Packs are the first solutions providing fully-tested policies to quickly establish a consistent and centralized approach for securing Oracle and SQL Server database data and also provide strong separation of duties. Ready-to-implement, pre-defined security best practices and policies leverage Vormetric’s deep experience working with the world’s largest enterprises and government agencies to secure Oracle and SQL Server environments across all index types, all data types and all versions, including Oracle 8i, 9i, 10g and 11g as well as Microsoft SQL Server 2000, 2005 and 2008.

Enterprises store a vast majority of their sensitive and mission-critical data on databases, driving them to ensure strong data security, regulatory compliance and separation of duties. With high-profile database breaches continuing to grab national headlines, Vormetric Database Security Packs help organizations avoid the financial impact of these thefts. According to an April 2007 report by Forrester titled Calculating The Cost Of A Security Breach, “all things considered, a security breach can cost you anywhere between $90 and $305 per record.”

Vormetric Database Security Packs also directly address compliance with security and privacy regulations, including the Payment Card Industry Data Security Standard (PCI DSS) encryption and key management requirements, separation of duties for Sarbanes-Oxley and state data protection laws for personally identifiable information.

“As the industry-leading provider of IT security, governance and regulatory compliance services, Coalfire works with our clients to implement best practices and meet regulatory compliance objectives every day,” said Kennet Westby, CTO and co-founder of Coalfire Systems. “Through our work with Vormetric customers, we have seen strong success in consolidating data security and encryption management. We are pleased to see Vormetric continuing to lead the industry by consolidating their best practices for Oracle and SQL Server through offering such easy to implement solutions to their customers.”

Vormetric Database Security Packs integrate seamlessly with Vormetric Data Security Manager, Vormetric Database Encryption Expert, Vormetric File Encryption Expert and Vormetric Key Security Expert. The Vormetric Database Security Packs complement Vormetric’s ability to centrally manage encryption, keys and policies for all database types, including DB2, Informix, Sybase and MySQL.

The first offering, Vormetric Database Security Pack for Oracle, will be generally available September 30, 2008. This security pack offers three distinct modules to fit any organization’s Oracle security environment:

• Encryption and Access Control: For customers requiring Oracle Encryption, this database encryption and security policy module transparently encrypts and controls access to sensitive data within the Oracle Database, Oracle log files and Oracle configuration files for single node, replicated and clustered environments.
• Oracle Key Security: For customers who have adopted Oracle Transparent Data Encryption (TDE), the key security policy module locks down stored Oracle keys and Oracle Wallet.
• Oracle Database Vault Execution Environment Security: For customers who have adopted Oracle Database Vault, the Vormetric Security Pack for Oracle secures the execution environment and completes the separation of duties model.

The Vormetric Security Pack for Oracle supports all versions of Oracle Database and data types. With the Vormetric Security Pack for Oracle, regulated and security conscious enterprises can immediately deploy proven best practices for securing Oracle and easily customize to their unique environment. The Vormetric Security Pack for Oracle complements Vormetric Data Security’s ability to encrypt any file, any database, any application, anywhere – without the need and expense of changing applications, indexes, database management practices or breaking application vendor support agreements. With a growing customer base throughout the business process outsourcing, government, financial services, retail and consumer services sectors, Vormetric is rapidly emerging as the standard for enterprise encryption.

“Over the past few years, regulatory compliance requirements and increasing security breaches have put significant pressure on enterprises to take stronger data security measures. Today, basic database management system (DBMS)-level security includes authentication, authorization, and access control (AAA), but those alone are not good enough to meet compliance requirements,” wrote Noel Yuhanna, principal analyst at Forrester Research in the January 2007 report Enterprise Databases Need Greater Focus To Meet Regulatory Compliance Requirements. “Enterprises should look at advanced security measures, such as database and network encryption, granular auditing, data masking, real-time database monitoring, and separation of duties, besides having strong policies and procedures to ensure data privacy and protection. Every regulatory compliance requirement is different; therefore, enterprises should take appropriate advanced database security measures to meet requirements. ”