Press Release

Brabeion Software's Chief Compliance Strategist Presents at
Spring 2008 FS-ISAC Conference

RESTON, VA — April 29, 2008 — Brabeion Software, the leading software provider in IT Governance, Risk and Compliance (IT GRC), today announced that Steve Schlarman, CISM, CISSP and Brabeion's Chief Compliance Strategist, spoke this week to a full house at the Spring 2008 FS-ISAC Member Meeting and Conference. Schlarman presented "Mega to Microscopic IT GRC." This session introduced a common framework for defining Mega, Macro, Micro and Microscopic risks and their corresponding IT GRC programs — helping to accelerate an organization's move up the maturity curve to optimized IT GRC management.

"IT GRC management is one of the top business issues for the financial services sector in 2008. However coordinating these programs through the business and technology eco-system these programs have radically diverse requirements and implications at various layers. What's needed is a common language that defines the strata of risks in a way that facilitates clear visibility into implementation and measurement requirements," added Schlarman.

Presented by Financial Services-Information Sharing and Analysis Center (FS-ISAC), the Spring FS-ISAC Member Meeting and Conference is a premier event for the Financial Services industry. This year's conference theme was "Enabling Preparedness: Charting the Threat Landscape." The conference aims to provide attendees with the knowledge necessary to better prepare for what they encounter in their everyday jobs by helping predict both the short- and long-term threats they face in order to more effectively reduce risk and better protect their organizations. The conference also emphasizes the organization's vision surrounding the convergence of information security, physical security and business continuity disciplines to improve enterprise preparedness. To learn more about the conference go to: http://www.fsisac.com/events/spring_conference

About Brabeion Software

Brabeion, the leading software provider in IT Governance, Risk and Compliance (IT GRC), helps organizations demonstrate governance, dramatically reduce risk and improve compliance while lowering costs. Brabeion's Polaris Suite is the first IT GRC solution to trace the full lifecycle of risk and compliance impacts from business and legislative requirements through to policy, implementation procedures and controls with automated audits and assessments. It is powered by comprehensive information risk and audit content developed and maintained by our team of domain experts, through strategic alliances with organizations including PricewaterhouseCoopers LLP, IT Governance Institute and others. Brabeion Polaris puts you in control of your governance, risk and compliance profile at every level and stage of your business process

Brabeion is a member of the Open Compliance and Ethics Group Technology Council, Information Security Forum (ISF), PCI Vendors' Alliance and Oracle's GRC Vendor Alliance. For more information, visit www.brabeion.com.

Press inquiries:
Melanie Elliott, Brabeion Software, tel: +01 703 752 9300; email: melanie.elliott@brabeion.com or Leslie Kesselring, Kesselring Communications, LLC tel: +01 503 358 1012; email leslie@kesselring.net