SANTA CLARA, CALIF. — September 17, 2001 - Sanctum, Inc., the established leader in automated Web application control and security software, today announced that Shilling & Kenyon/SK Consulting, a CBIZ Company, has adopted Sanctum's AppScan 2.5 as a standard component of the firm's security consulting practice. AppScan 2.5 was selected to enhance the firm's application-level risk assessment portfolio after being used internally to audit and manage the security of SK Consulting's own Web applications.

"With high-profile hacks and vulnerabilities publicized in the news every day, our clients are demanding more assurance that the security of both their network and business data is preserved," said Garth Gilmour, partner, SK Consulting. "Without an automatic solution, application auditing is a complex and resource-intensive task. SK Consulting will use AppScan 2.5 to take an aggressive approach in identifying and managing Web application security risks for our clients. Our own experience with AppScan 2.5 was so positive that we feel confident it will ensure a better security posture for our clients as well."

Sanctum's AppScan is the most comprehensive application risk assessment tool in the market today, empowering the user with improved efficiency, accuracy and flexibility to ensure full user control of Web application security. AppScan 2.5 automates the manual task of auditing Web applications for both known and unknown application vulnerabilities and provides recommendations for fixing these vulnerabilities with the most up-to-date patches or techniques available. AppScan 2.5 takes the human guessing and inconsistency out of Web site risk assessment, providing the security standard for application audits across the enterprise.

"The benefits of using an automated security risk assessment solution vastly outweigh those of the slower, less reliable manual process. Our customers demand comprehensive vulnerability assessment solutions to increase the confidence they have in their Web applications today," said Peggy Weigle, president and CEO of Sanctum, Inc. "SK's adoption of AppScan 2.5 as an elemental tool within the consulting practice demonstrates that security experts realize this threat and are adding application-level protection to their services. We are very excited to be adding SK Consulting to the list of leading firms that have recognized Sanctum's products as an important component of achieving advanced security."

About Shilling and Kenyon Consulting
Shilling & Kenyon/SK Consulting is one of Silicon Valley's largest accounting and consulting companies. They have developed a multidisciplinary business consulting firm with specialization in the fields our client's value most: strategic and business planning, people management, use of technology, marketing, and finance. Shilling and Kenyon/SK Consulting is a subsidiary of Century Business Services, Inc. ("CBIZ") (NASDAQ:CBIZ). CBIZ, the 7th largest accounting company and the 12th largest business insurance broker in the United States, provides integrated services to small and mid-sized companies in the following areas: accounting and tax; employee benefits; wealth management; property and casualty insurance; payroll; IS consulting; and HR consulting. CBIZ also provides valuation; litigation advisory; performance consulting; government relations; commercial real estate; wholesale insurance; healthcare consulting; medical practice management; worksite marketing; and capital advisory services. These services are provided throughout a network of more than 200 Company offices in 34 states and the District of Columbia.

About Sanctum, Inc. (www.SanctumInc.com)
Founded in 1997 and headquartered in Santa Clara, Calif., Sanctum, Inc. is the recognized leader for Web application security solutions. Sanctum software solutions provide automatic enforcement of intended business processes, ensuring the protection of core information and data. By detecting and defending against any unauthorized behavior, Sanctum protects customers against malicious cybercriminal activity-from theft of intellectual property and customer data, to e-commerce fraud and Web site defacement-even if a site has unknown security holes or flaws. Sanctum's solutions complete a company's security infrastructure, assure regulatory compliance, and create sustainable ROI. Sanctum's customers include industry leaders in finance, retailing, healthcare, government and telecommunications. Privately held, Sanctum is funded by blue-chip venture capital firms and industry leaders including Sprout Group, Dell, Gemini Israel Funds, Fidelity Ventures, First Union eVentures Group, Mofet Israel Technology Fund and Walden Israel. For more information, visit www.SanctumInc.com or contact the Company directly at (408) 352-2000.

For Immediate Release
Contact:

Drea Garrison or Tara Dugan
Schwartz Communications, Inc.
(415) 512-0770
[email protected]

Garth Gilmour
SK Consulting
(408) 295-3822
[email protected]