Aveksa 3 Solution to Securely Monitor Access to Information, and Manage Entitlement and Role Certifications across 27,000 Users

WALTHAM, Mass.—June 18, 2007—Aveksa, Inc., the leading provider of enterprise access governance solutions, today announced that CIGNA has selected Aveksa 3 to automate the monitoring, reporting and certification of user entitlements and roles across its entire IT enterprise network, including more than 27,000 employees and 300 applications.

As one of the largest investor-owned health and related benefits organizations in the United States, CIGNA has already developed a sophisticated role-based identity infrastructure to proactively reduce risk and to comply with the strict requirements of HIPAA and Sarbanes-Oxley. The company will now use Aveksa 3 for security and compliance reporting, and to enable an automated, end-to-end workflow for managing entitlement and role reviews, which are critical for effective compliance and risk management.

“CIGNA recognizes the crucial role that security and risk management plays in protecting our information assets and our brand,” said Craig Shumard, chief information security officer at CIGNA. “With the Aveksa solution, we expect to automate what is currently a manual process for role-based access governance. We tested Aveksa’s technology across tens of thousands of users, millions of entitlements, and several thousand roles, and we are confident that it will provide the efficiency and scalability we need for enterprise-wide access governance at CIGNA.”

Through its use of Aveksa 3, which includes Aveksa Compliance Manager and the new Aveksa Role Manager product, CIGNA will create a fully-automated workflow for identity-driven business processes spanning IT departments, business line managers and  compliance managers. The Aveksa solution will play an essential role in CIGNA’s regulatory initiatives, including identity audit  compliance and reporting; access certifications; and role analysis, design, and maintenance. Using Aveksa 3, the company will have a significantly higher level of visibility into the state of user access rights for risk-relevant applications and dramatically  simplified reporting for continuous compliance.

“Companies like CIGNA, which have successfully deployed identity management and role-based access control, recognize the need for a unified process for monitoring, analyzing and reviewing roles and entitlements that integrates with their existing systems,” said Deepak Taneja, CEO of Aveksa. “Aveksa looks forward to helping CIGNA create an efficient business process for effective access governance.”

About CIGNA
As a Business of Caring, CIGNA (NYSE: CI) provides employers with benefits, expertise and services that improve the health, well-being and productivity of their employees. With approximately 47 million covered lives in the United States and around the world, CIGNA’s operating subsidiaries offer a full portfolio of medical, dental, behavioral health, pharmacy and vision care benefits and group life, accident and disability insurance. Web site: http://www.CIGNA.com

About Aveksa
Aveksa provides the only comprehensive solution for enterprise-class, access governance, risk management and compliance. Aveksa automates the monitoring, reporting, certification and remediation of user entitlements and roles; enables role discovery and lifecycle management; and delivers unmatched visibility into the true state of user access rights. With Aveksa, business, security and compliance teams can effectively collaborate and enforce accountability. Our growing customer base includes leading organizations in financial services, healthcare and manufacturing. For more information, go to www.aveksa.com