ArcSight Provides Enhanced Enterprise Security Management Solution for New HP OpenView Compliance Manager

CUPERTINO, Calif. – June 6, 2005 – ArcSight, Inc., the award winning Enterprise Security Management (ESM) solution provider, today announced that ArcSight ESM will provide enhanced enterprise security management capabilities for HP OpenView Compliance Manager.  

The HP OpenView Compliance Manager is a comprehensive compliance reporting solution focused on key controls and risks for IT management and auditors.  The integration of ArcSight ESM with HP OpenView Compliance Manager extends the companies’ existing relationship designed to help companies sustain and demonstrate regulatory compliance while helping to lower overall compliance costs.

Enterprise regulatory compliance is a complex issue impacting organizations of every size and across a variety of business sectors. The Sarbanes-Oxley Act  and the Health Insurance Portability and Accountability Act (HIPAA) are just two of the many regulations enacted around the need to ensure the confidentiality, integrity and availability of sensitive information.  These regulatory compliance requirements mandate that organizations institute and provide proof of strong governance surrounding their entire information technology program. The combination of ArcSight ESM with HP OpenView Compliance Manager joins network operations, service management and security operations metrics to deliver a centralized, intelligent audit control for IT Governance programs.  The solution also provides broad support for control frameworks surrounding security management, financial reporting, IT Governance and IT operations such as ISO17799, COSO, CobiT and ITIL.  

“We are pleased to be working with HP OpenView on this significant initiative in the compliance space”, said Steve Sommer, SVP Marketing and Business Development of ArcSight. “This solution will deliver great benefits to our many customers that are facing regulatory compliance requirements.  The convergence of network, security and business metrics delivers the all-important global view of regulatory compliance and associated IT Governance practices.”

“Security management is an important component of overall compliance management,” said Yale Tankus, vice president of Partnerships and Alliances, Management Software Business, HP. “HP is incorporating ArcSight ESM into HP OpenView Compliance Manager to help customers prove and maintain compliance across their IT infrastructures, including operating systems, databases, directories and applications.” 

ArcSight ESM provides an intelligent, centralized audit trail that enhances security, providing proof of effective audit, threat management and incident response surrounding systems, applications and networks that contain sensitive information.  HP OpenView provides automation of preventative controls for sustained compliance around change, configuration, identity, incident, operations, problem, and service level management.

The merging of these audit controls into a centralized, audit-relevant reporting system is intended to allow organizations to attain continuous awareness of compliance status while reducing audit costs. With the combined solution, IT organizations can effectively implement a true multi-layered approach in their compliance efforts through:

• An enterprise-wide state of continuous audit, which aims to foster and reduce the cost of ongoing regulatory compliance
• A comprehensive, centralized risk management solution across the organization
• Merging security and network incident management practices to support business goals
• Automatic and continuous monitoring of all IT control processes
• Simplified compliance through intelligent and automated correlation of business and operational information

About ArcSight

ArcSight, Inc. is the leading provider of Enterprise Security Management (ESM) solutions. Winner of CMP’s Network Computing Editor’s Choice and Network World Best of Tests awards, and numerous other awards and recognitions, ArcSight ESM 3.0 enables enterprises to centrally manage information risk. By comprehensively collecting and analyzing security data, ArcSight ESM 3.0 provides accurate, real-time internal, external threat management and compliance reporting. ArcSight customers include companies in the Fortune top 5 of financial services, banking, telecommunications, high-technology, retail, healthcare, and biotech industries -- and more than 20 of the top 30 federal agencies.

# # #

For more information on ArcSight news, please contact: pr@arcsight.com