SOURCE: LifeLock

February 20, 2007 09:00 ET

LifeLock Achieves World's Highest Security Certification

Arizona-Based Firm Is One of the First U.S. Companies to Become ISO 27001 Certified

TEMPE, AZ -- (MARKET WIRE) -- February 20, 2007 -- LifeLock, the nation's first identity theft prevention company, has added another first to its impressive resume. In January the organization became one of the first U.S. companies to achieve ISO 27001 certification, the highest security standard for data handling and processing provided by the International Organization for Standardization (ISO).

The ISO 27001 standard sets the requirements for a top-rate Information Security Management System (ISMS). Adhering to this standard helps identify, manage and minimize the range of threats to which information is regularly subjected.

"LifeLock is the first consumer protection business in the world to achieve ISO 27001 certification," said Aaron Mog, LifeLock Chief Security Officer. "The group of organizations with ISO 27001 certification include Federal Reserve Bank, World Bank, The Bechtel Corporation and Xerox. In joining this elite fraternity of worldwide firms that have achieved certification, LifeLock has demonstrated our unwavering commitment to being a nationwide leader in Information Security."

The ISO 27001 standard addresses the following security issues:

--  Security policy -- the management direction and support for
    information security
    
--  Organization of assets and resources -- the management of information
    security within the organization
    
--  Asset classification and control -- the identification of assets and
    appropriate protection measures
    
--  Personnel security -- a reduction in risks of human error, theft,
    fraud or misuse of facilities
    
--  Physical and environmental security -- the prevention of unauthorized
    access, damage and interference to business premises and information
    
--  Communications and operations management -- ensuring the correct and
    secure operation of information processing facilities
    
--  Access control -- the control of information access
    
--  Systems development and maintenance -- ensuring that security is built
    into information systems
    
--  Business continuity management -- the counteraction of interruptions
    to business activities and the protection of critical business processes
    from the effects of major failures or disasters
    
--  Compliance -- an adherence to any criminal or civil law, statutory,
    regulatory or contractual obligations, and any further security
    requirements
    
So how does ISO 27001 certification affect LifeLock? Achieving this standard delivers a number of valuable benefits, including:

Credibility, trust and confidence -- Customers can feel extremely confident in LifeLock's ability to keep their information safe.

Proof of Compliance -- Certification helps to show authorities that LifeLock complies with all the relevant laws and regulations.

Proof of Commitment -- Certification helps to ensure and demonstrate commitment to information security at all levels of the organization.

Cost Savings -- The cost of a single information security breach can often be in excess of $200,000. Certification reduces the risk of such expenditure being incurred.

The ISO requires that LifeLock undergo yearly audits to maintain this certificate and show that the company is continuously working to improve its Information Security Management System.

"The security of our customer's personal information is the highest priority," added LifeLock CEO Todd Davis. "In a business created to protect the credit and identity of our clients, it is of critical importance that LifeLock has an industry-leading Information Security Program. We have completed the ISO 27001 certification and achieved this level of excellence to show our customers and partners that LifeLock makes Information Security our number one concern."

About LifeLock

LifeLock is the nation's first ID Theft Prevention Company that maintains active fraud alerts with the three major credit bureaus, as well as ChexSystems. LifeLock gives people control of their own information, providing them the ability to authorize transactions such as address changes and the opening of credit lines. LifeLock renders personal information useless to thieves, backing up its service with a million-dollar guarantee to completely fix any problems if a client is ever compromised. Located in a secure facility in Tempe, Arizona, LifeLock is a private company registered with Dun & Bradstreet, Verisign, ScanAlert HackerSafe, and the BBBOnline Reliability Program, and is a corporate sponsor of the National Crime Prevention Council. For more information on LifeLock, go to www.lifelock.com.

Contact Information