Digital Defense and SEI Execute License Agreement

Business Wire, Feb 4, 2008

SAN ANTONIO -- Digital Defense, Inc. (DDI), an information security assessment services and Software as a Service (SaaS) risk management solutions provider, today announced that it has entered into a license agreement with the Carnegie Mellon Software Engineering Institute (SEI) to apply OCTAVE([R]) Allegro, a methodology to streamline and optimize the process of assessing information risks, into DDI's information security risk assessment management tools.

OCTAVE([R]) is an information security risk assessment methodology, released by the SEI in 2003, and has been deployed in the federal arena. OCTAVE([R]) Allegro is an advancement of OCTAVE and is the foundational methodology that serves as the basis for DDI's new management tool.

"When evaluating threats and associated business risks, it is critical that the tools used by an organization have been well thought out and tested," said James Stevens, senior member of the technical staff with SEI. "OCTAVE Allegro provides organizations, like commercial firms, with best practices in information risk assessment."

Digital Defense will be making this management tool available to organizations that contract for one of the company's information security risk assessment service offerings. The services, designed to address a wide range of needs in the marketplace, feature Webinar and onsite consulting solutions.

"We are very excited about our partnership with SEI," stated Tom DeSot, Chief Compliance Officer of Digital Defense. "We make every effort to deploy products and services that help clients assess risks to their business operation as efficiently as possible. Ensuring that we thoroughly evaluate the soundness of the technology we use to deliver our services is essential. Our partnership with SEI demonstrates our commitment to deliver high quality solutions to our clients."

Performing information security risk assessments is a mandatory requirement by several regulatory agencies. If one of these agencies regulates your firm, the reports generated from the management tool that is available from this collaborative effort will demonstrate proof of compliance.

About Digital Defense

Digital Defense, Inc., an approved scanning vendor by the Payment Card Industry (PCI) Security Standards Council (SSC), delivers a comprehensive portfolio of risk management services including information security programs, regulatory compliance solutions, security testing of IT products and security education offerings to financial institutions and enterprises that use Internet Protocol-based technology in their business operations. Digital Defense and its Security Operations team uses proprietary Software as a Service (SaaS) technology and industry best practices to deliver a broad array of services to its clients, which range from small financial institutions to global Fortune enterprises. Frontline[TM], Digital Defense's flagship service portal, provides clients with instant access to a security information management platform that enables independent oversight of their organization's security posture on an autonomous or Digital Defense managed service basis. For more information about Digital Defense, please visit our web site at www.digitaldefense.net or contact us at 888.273.1412.

Reader Contact Information
Digital Defense, Inc., 1711 Citadel Plaza, San Antonio, Texas, 78209
Phone - 210.822.2645, Fax - 210.822.9216
www.digitaldefense.net

Digital Defense and the Shield Logo are Registered Service Marks of Digital Defense, Inc. All other trademarks are the property of their respective owners.