News release

HP Helps Organizations Manage Risk, Protect Information and Assets with New Security Services Portfolio

PALO ALTO, Calif., Jan. 25, 2010

HP today announced a comprehensive security services portfolio to empower organizations to more effectively manage risk, protect critical infrastructure, safeguard the continuity of operations and maintain regulatory compliance.

To address the comprehensive information security requirements of businesses and governments, HP is integrating a wide variety of security services from across the company into a unified HP Security, Compliance and Continuity Services portfolio. The portfolio consists of consulting, training and managed security services that leverage a common reference model to reduce complexity and cost for clients.

HP also introduced two new services in the portfolio: the Cloud Computing Security Assessment and Application Security Center of Excellence (CoE) Services. The portfolio and new services are part of HP Secure Advantage, HP’s portfolio of security products and services.

“Organizations want to enable new models of collaboration inside and outside of their organizations, but can only do so if they comprehensively address security vulnerabilities,” said Gary M. Budzinski, senior vice president and general manager, Technology Services, HP. “HP provides a heritage of trust and integrity that is key for a security services vendor, with deep capabilities that cover the security needs of simple to the most complex environments.”

HP Security, Compliance and Continuity Services portfolio

The HP Security, Compliance and Continuity Services portfolio addresses all aspects of security in cloud computing and traditional IT environments. These include applications, business continuity, content, data integrity, data center, end points, networks, identity and access management, risk management, and security operations. Each service category is supported by many individual services and capabilities for various types of information security needs.

To reduce complexity and manage costs holistically across these areas, the portfolio uses the HP Information Security Service Management (ISSM) reference model, an IT Infrastructure Library (ITIL) based architecture. Through this approach, HP is able to align the technology environment to each business’s objectives.

To provide clients with flexibility to meet their security needs, HP offers a range of sourcing options. HP works with clients to design, implement and maintain their own security environment; manage certain security functions for them; or outsource their entire security environment. Based on their organization’s objectives, clients are able to choose their preferred form of service delivery tailored to their individual needs.

New services in the portfolio

The new Cloud Computing Security Assessment enables HP to help mitigate security risk as clients adopt cloud computing. This assessment joins HP’s existing Cloud Discovery Workshop and HP Cloud Assure. Together these services help companies decide what should be moved to the cloud, as well as assess and address security requirements of private and public clouds. They also provide the means to continue managing cloud security on an ongoing basis.

HP also has launched the new Application Security Center of Excellence (CoE) Services to prevent security attacks that target web applications. This service includes a workshop and assessment services that help organizations define their strategy and develop a roadmap for implementing an application security program across the application life cycle. Organizations are able to prioritize requirements based on business risk, effectively utilize limited resources, build processes based on best practices, and use the right technology to protect sensitive data from malicious hacker attacks. Additionally HP Software as a Service (SaaS) Project Services for Application Security Center also helps customers rapidly and cost-effectively implement their application security initiatives with a complete solution maintained and managed by HP.

Security services for businesses and governments

HP’s robust security services portfolio enables industry and government organizations to measure and manage risk, protect information and assets, increase secure collaboration, analyze security threats, overcome vulnerabilities and enable business continuity. HP has implemented and managed some of the largest, most demanding security environments in the world, such as the U.S. Navy Marine Corps Intranet (NMCI).

For governments, HP supports organizations in maintaining cyber security efforts needed for mission success and protecting essential critical infrastructures that support civil society and national defense. The security services portfolio is available under U.S. government contract vehicles, enabling public sector agencies to access the full range of HP cyber security services.

The new portfolio leverages and integrates HP’s experience from more than 40 years of managed security services delivery, more than 20 years of security consulting, and ongoing research.

Pricing and availability

The HP Security, Compliance and Continuity Services portfolio is now available worldwide. Pricing varies based on specific requirements. More information is available at www.hp.com/services/security.

About HP

HP creates new possibilities for technology to have a meaningful impact on people, businesses, governments and society. The world’s largest technology company, HP brings together a portfolio that spans printing, personal computing, software, services and IT infrastructure to solve customer problems. More information about HP (NYSE: HPQ) is available at http://www.hp.com/.

This news advisory contains forward-looking statements that involve risks, uncertainties and assumptions. If such risks or uncertainties materialize or such assumptions prove incorrect, the results of HP and its consolidated subsidiaries could differ materially from those expressed or implied by such forward-looking statements and assumptions. All statements other than statements of historical fact are statements that could be deemed forward-looking statements, including but not limited to statements of the plans, strategies and objectives of management for future operations; any statements concerning expected development, performance or market share relating to products and services; any statements regarding anticipated operational and financial results; any statements of expectation or belief; and any statements of assumptions underlying any of the foregoing. Risks, uncertainties and assumptions include macroeconomic and geopolitical trends and events; the execution and performance of contracts by HP and its customers, suppliers and partners; the achievement of expected operational and financial results; and other risks that are described in HP’s filings with the Securities and Exchange Commission, including but not limited to HP’s Annual Report on Form 10-K for the fiscal year ended October 31, 2009. HP assumes no obligation and does not intend to update these forward-looking statements.

© 2010 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.