SCOTTSDALE, AZ -- (MARKET WIRE) -- 02/11/08 -- Lumension Security(TM), Inc., a leading global security management company formed by the combination of PatchLink® Corporation and SecureWave® S.A., today announced the availability of a podcast titled, "Endpoint Security Best Practices for Complying with FDCC Standards." The podcast features a discussion with Steve Antone, vice president of federal solutions at Lumension Security, about the Federal Desktop Core Configuration (FDCC) and how Lumension Security's PatchLink Security Configuration Management (SCM(TM)) solution helps agencies improve compliance posture while lowering operational and support costs by securing and standardizing security configurations. The podcast is available online at: http://www.lumension.com/request_form.jsp?id=132751&metadataId=132751.

As of February 1, 2008, all federal government agencies must comply with a mandate from the U.S. Office of Management and Budget (OMB 07-11) that requires all agencies adopt secure configurations on Windows XP and Vista operating systems and comply as outlined by the FDCC. In addition, agencies must implement standard installation practices and assert that installing/updating does not alter the configuration settings from the approved FDCC configuration.

"The FDCC and subsequent OMB mandate are driven by the need to improve security at the endpoint. There are tens of thousands of different configurations of laptops and desktops used throughout the federal government, and by default, this means that there are going to be an exponential number of vulnerabilities or attack vectors at the endpoint," said Antone. "Essentially, the FDCC works to decrease the number of configurations and create a core configuration which will dramatically decrease the number of attack vectors, simplifying management of the endpoint and improving agencies' overall security and audit posture."

Lumension Security's PatchLink SCM is the industry's first enterprise-class solution that ensures secure and compliant endpoint configurations in accordance with industry best practices. PatchLink SCM enables enterprises to define security policies that are based on best practices identified by security organizations such as the National Security Agency (NSA) and the National Institute of Standards and Technology (NIST), as well as leading vendors such as Microsoft.

"PatchLink SCM leverages the Security Content Automation Protocol (SCAP) and integrates seamlessly with Lumension Security's proven, market-leading solutions, providing commercial and government organizations with out-of-the-box regulatory and best-practices templates to ensure all systems and applications are properly configured," said Antone. "Our SCM module is the first of its kind to solve both the scalability and integration issues. A large number of our federal government customers already use our PatchLink Update and Scan solutions, so SCM is a seamless fit into the infrastructure and will provide robust assessment, remediation and enforcement capabilities within one technology set."

About Lumension Security(TM), Inc.

Lumension Security(TM), formed by the combination of PatchLink® Corporation and SecureWave® S.A., is a recognized, global security management company, providing unified protection and control of enterprise endpoints for more than 5,100 customers and 14 million nodes worldwide. Leveraging its proven Positive Security Model, Lumension enables organizations to effectively manage risk at the endpoint by delivering best-of-breed, policy-based solutions that simplify the entire security management lifecycle. This includes automated asset discovery, vulnerability assessment, remediation and validation; application and device control; extensive policy compliance reporting; and integration with leading network access control solutions. Headquartered in Scottsdale, Arizona, Lumension has offices worldwide, including Virginia, Florida, Luxembourg, the United Kingdom, Spain, Australia, Hong Kong and Singapore. PatchLink, now Lumension, was founded in 1991 by Sean Moshir. More information can be found at www.lumension.com.

Lumension Security, the Lumension logo, PatchLink® and Sanctuary® are trademarks or registered trademarks of Lumension Security. All other trademarks are the property of their respective owners.

• Comodo Endpoint Security Manager Protects Enterprise Data
• BPM Butresses Security Best Practices