PRESS RELEASE

SAN FRANCISCO—August 31, 2010—nCircle, the leader in security and compliance auditing solutions, today announced that it has updated its Certified PCI Scan Service to be compliant with the latest PCI DSS requirements for vulnerability scanning ahead of the September 1, 2010 deadline. The new requirements improve the processes and procedures Approved Scanning Vendors (ASVs) must follow when conducting scans of merchant networks. The new version of the nCircle Certified PCI Scan Service™ includes several new features and updates that make it fully compliant with the new requirements.

nCircle has worked directly with the PCI Security Standards Council to drive the PCI Data Security Standard for over four years and is pleased to see these positive changes implemented. The nCircle Certified PCI Scan Service, consistently rated as the most accurate solution in competitive bake-offs, is an automated, self-service solution that enables anyone to scan their Internet-facing payment network for PCI compliance. Based on technology from nCircle’s award-winning vulnerability management product IP360™, the Certified PCI Scan Service provides a highly accurate platform to scan merchant networks for PCI compliance.

The new features in the updated nCircle Certified PCI Scan Service include: • Enhanced Asset Discovery. PCI DSS 1.2 requires that merchants identify all Internet-facing systems that are part of the cardholder data environment as “in scope” for PCI scanning. The nCircle Certified PCI Scan Service adds enhanced automated asset discovery, eliminating manual scoping efforts and greatly improving the accuracy of those efforts. nCircle’s automated asset discovery eliminates repeat scans required due to incorrect initial scoping, saving valuable time. • New Report Formats. PCI DSS 1.2 standardizes the report format produced by ASVs. The nCircle Certified PCI Scan Service now generates reports in this required format, including pass/fail status and a prioritized list of any vulnerabilities discovered. • Partner Report Branding. The nCircle Certified PCI Scan Service now provides the ability for a partner to upload their logo and have it included on each report generated by the service. “nCircle continues to execute for us in the security compliance of our merchant networks, staying on the cutting edge of the latest PCI requirements from the PCI SSC,” stated Jason Miller, Relationship Manager at Beanstream Internet Commerce, a leading provider of authentication and electronic payment processing solutions. “We especially like the easy-to-use interface and the new report branding feature, allowing us to easily co-brand our merchants compliance reports.”

“The new PCI DSS requirements will improve the security of cardholder data, and nCircle is proud to deliver support for these requirements ahead of the deadline,” said Tim Keanini, CTO at nCircle. “nCircle’s updated service also has improvements specifically for its PCI partners, making it easier for them to provide the best possible service to their customers.”

The new version of the nCircle Certified PCI Scan Service will be generally available today. Customers using the service for the first time are eligible to receive a free trial subscription. For more information on the nCircle Certified PCI Scan Service, please visit ncircle.com/pci.

About nCircle Suite360 nCircle provides the world's most comprehensive suite of solutions for agentless security and configuration auditing for physical and virtual IT environments. nCircle’s solutions combine the broadest discovery of networked systems and their operating systems, applications, vulnerabilities and configurations with advanced analytics to help enterprises reduce security risk and achieve compliance. nCircle's solutions includes IP360™ for vulnerability management and risk management, WebApp360™ for web application vulnerability auditing, Configuration Compliance Manager™ (CCM) for configuration auditing and file integrity monitoring, Certified PCI Scan Service™ for on-demand self-service PCI scanning, and Suite360 Intelligence Hub™ for IT governance, risk and compliance (ITGRC) reporting and analytics.

About nCircle nCircle is the leading provider of automated security and compliance auditing solutions. More than 4,500 enterprises, government agencies and service providers around the world rely on nCircle's proactive solutions to manage and reduce security risk and achieve compliance on their networks. nCircle has won numerous awards for growth, innovation, customer satisfaction and technology leadership. nCircle is headquartered in San Francisco, CA, with regional offices throughout the United States and in London and Toronto. Additional information about nCircle is available at www.ncircle.com.

nCircle is a registered trademark of nCircle Network Security, Inc. All other registered or unregistered trademarks are the sole property of their respective owners.