Press Release

Brabeion Software Joins the Open Compliance
and Ethics Group's Technology Council

RESTON, VA—January 17, 2008—The Open Compliance and Ethics Group (OCEG) announced today that Brabeion Software, a leading provider of IT Governance, Risk and Compliance (IT GRC) management solutions, has joined the OCEG leadership community as a member of the Technology Council. The OCEG is the only nonprofit organization offering comprehensive guidance, standards, benchmarks and tools for integrating governance, risk management, internal control and compliance (GRC) processes. Brabeion will contribute its broad expertise in organizational and IT policy, controls and risk management to OCEG.

"Brabeion is thrilled and committed to become an integral part of the OCEG community. By joining the OCEG Technology Council, we will actively contribute to its work to help organizations leverage their evolving GRC-related processes and automation for improving the effectiveness and the integrity of their business," said Steven Schlarman, Chief Compliance Strategist at Brabeion.

"OCEG is absolutely delighted that Brabeion has joined our dynamic and rapidly growing Technology Council. We look forward to adding their comprehensive approach to solving organizational risk and IT compliance management to our leadership team dedicated to GRC technology. Brabeion's activity on the Technology Council will particularly advance OCEG's GRC programs in the area of technology risk management integrated with IT governance," said Lane Leskela, Vice President of Technology Programs at OCEG.

Brabeion will also contribute to the OCEG Technology Council's Blueprint and Roadmap working groups. These initiatives will define a comprehensive GRC technology map that combines the disciplines arising from all IT products and services. Brabeion was first to market with a complete IT GRC suite. Built from the ground up with state-of-the-art technology and IT control content from many industry recognized sources such as PricewaterhouseCoopers and ITGi, Brabeion is delivering on the IT GRC promise to bring together and automate the disparate processes, people and tools required to manage IT risk and compliance. Brabeion offers one of the highest IT GRC deployment success rates and dramatic returns on investment for global F1000 enterprises across a broad range of vertical industries.

With over 12,000 members representing 66 distinct governance, risk and compliance responsibilities across 45 countries, OCEG provides critical information to some of the largest, most reputable companies in the world, while also meeting the needs of individual GRC executives.

About Brabeion

Brabeion, the leading software provider in IT Governance, Risk and Compliance, helps organizations achieve and sustain compliance, optimally manage risks and demonstrate governance through full policy, procedure and controls lifecycle management and measurement with automatic testing and analysis of relevant people, process and technology controls. Brabeion is the first solution to provide the ability to trace impacts of risk and compliance states from business and legislative requirements, through policy and implementation procedures to controls with automated audits and assessments.

Brabeion's platform is powered by comprehensive information risk and audit content developed and maintained by our team of domain experts, in collaboration with strategic partners including PricewaterhouseCoopers LLP, IT Governance Institute and others. With Brabeion's solution, organizations gain visibility into actual governance, risk and compliance posture; automate policy, procedure, standards and controls life cycle management, and communication and awareness; perform continuous compliance and risk assessments; and manage exceptions, remediation and findings. Organizations can dramatically reduce risk and improve compliance while lowering assessment costs by leveraging the reuse of tests across all audit requirements through integration with assessment technology and manual surveys. Brabeion puts you in control of your governance, risk and compliance profile, at every level and stage of your business process.

Brabeion is a member of the Open Compliance and Ethics Group Technology Council, Information Security Forum (ISF), PCI Vendors' Alliance and Oracle's GRC Vendor Alliance. For more information, visit www.brabeion.com.

About the Open Compliance & Ethics Group

OCEG is the only nonprofit organization offering comprehensive guidance, standards, benchmarks and tools for integrating governance, risk management, internal control and compliance (GRC) processes. Our unique platform and organizational structure helps you take advantage of contributions from thousands of experts and companies - many of them just like yours. Our guidance, benchmarking, custom tools and communities of practice help you drive principled performance™ at www.oceg.org

Press Contacts:

For Brabeion:
Melanie Elliott
703 752 9300
melanie.elliott@brabeion.com

For OCFG:
Lane Leskela
425 385 3000
lane.leskela@oceg.org