Empowering Security And Compliance Management For The Z Os Racf Environment Using Ibm Tivoli Security Management For Z Os

Author : Axel Buecker,Michael Cairns,IBM Redbooks
Publisher : IBM Redbooks
Page : 52 pages
File Size : 55,9 Mb
Release : 2010-08-12
Category : Computers
ISBN : 9780738450209

Get Book

Empowering Security and Compliance Management for the z/OS RACF Environment using IBM Tivoli Security Management for z/OS by Axel Buecker,Michael Cairns,IBM Redbooks Pdf

Every organization has a core set of mission-critical data that requires protection. Security lapses and failures are not simply disruptions, they can be catastrophic events with consequences felt across the enterprise. The inadvertent mistakes of privileged users alone can result in millions of dollars in damages through unintentional configuration errors and careless security commands. Malicious users with authorized access can cause even greater damage. As a result, security management faces a serious challenge to adequately protect a company's sensitive data. Likewise, IT staff is challenged to provide detailed audit and controls documentation in the face of increasing demands on their time. Automation and simplification of security and compliance processes can help you meet these challenges and establish effective, sustainable user administration and audit solutions. This includes security database cleanup, repeatable audit of configurations and settings, and active monitoring of changes and events. IBM Tivoli Security Management for z/OS V1.11 provides these solutions to help enhance the security of mainframe systems through automated audit and administration. In this IBM® RedpaperTM document we discuss how Tivoli® Security Management for z/OS® allows you to submit mainframe security information from z/OS, RACF®, and DB2® into an enterprise audit and compliance solution and how to combine mainframe data from z/OS, RACF, and DB2 with that from other operating systems, applications, and databases in order to provide the ability to capture comprehensive log data, interpret that data through sophisticated log analysis, and communicate results in an efficient, streamlined manner for full enterprise-wide audit and compliance reporting.

Author : Axel Buecker,Jose Amado,David Druker,Carsten Lorenz,Frank Muehlenbrock,Rudy Tan,IBM Redbooks
Publisher : IBM Redbooks
Page : 464 pages
File Size : 51,5 Mb
Release : 2010-07-16
Category : Computers
ISBN : 9780738434469

Get Book

IT Security Compliance Management Design Guide with IBM Tivoli Security Information and Event Manager by Axel Buecker,Jose Amado,David Druker,Carsten Lorenz,Frank Muehlenbrock,Rudy Tan,IBM Redbooks Pdf

To comply with government and industry regulations, such as Sarbanes-Oxley, Gramm Leach Bliley (GLBA), and COBIT (which can be considered a best-practices framework), organizations must constantly detect, validate, and report unauthorized changes and out-of-compliance actions within the Information Technology (IT) infrastructure. Using the IBM® Tivoli Security Information and Event Manager solution organizations can improve the security of their information systems by capturing comprehensive log data, correlating this data through sophisticated log interpretation and normalization, and communicating results through a dashboard and full set of audit and compliance reporting. In this IBM Redbooks® publication, we discuss the business context of security audit and compliance software for organizations and describe the logical and physical components of IBM Tivoli Security Information and Event Manager. We also present a typical deployment within a business scenario. This book is a valuable resource for security officers, administrators, and architects who want to understand and implement a centralized security audit and compliance solution.

Author : Bill White,Didier Andre,Lindsay Baer,Julie Bergh,Giovanni Cerquone,Joe Cronin,Diego Encarnacion,Wayne O'Brien,Marius Otto,Toobah Qadeer,Laurie Ward,IBM Redbooks
Publisher : IBM Redbooks
Page : 136 pages
File Size : 52,5 Mb
Release : 2023-06-23
Category : Computers
ISBN : 9780738461175

Get Book

Keeping Up With Security and Compliance on IBM Z by Bill White,Didier Andre,Lindsay Baer,Julie Bergh,Giovanni Cerquone,Joe Cronin,Diego Encarnacion,Wayne O'Brien,Marius Otto,Toobah Qadeer,Laurie Ward,IBM Redbooks Pdf

Non-compliance can lead to increasing costs. Regulatory violations involving data protection and privacy can have severe and unintended consequences. In addition, companies must keep pace with changes that arise from numerous legislative and regulatory bodies. Global organizations have the added liability of dealing with national and international-specific regulations. Proving that you are compliant entails compiling and organizing data from multiple sources to satisfy auditor's requests. Preparing for compliance audits can be a major time drain, and maintaining, updating, and adding new processes for compliance can be a costly effort. How do you keep constant changes to regulations and your security posture in check? It starts with establishing a baseline: knowing and understanding your current security posture, comparing it with IBM Z® security capabilities, and knowing the latest standards and regulations that are relevant to your organization. IBM Z Security and Compliance Center can help take the complexity out of your compliance workflow and the ambiguity out of audits while optimizing your audit process to reduce time and effort. This IBM Redbooks® publication helps you make the best use of IBM Z Security and Compliance Center and aid in mapping all the necessary IBM Z security capabilities to meet compliance and improve your security posture. It also shows how to regularly collect and validate compliance data, and identify which data is essential for auditors. After reading this document, you will understand how your organization can use IBM Z Security and Compliance Center to enhance and simplify your security and compliance processes and postures for IBM z/OS® systems. This publication is for IT managers and architects, system and security administrators

Author : Axel Buecker,Michael Cairns,Monique Conway,Mark S. Hahn,Deborah McLemore,Jamie Pease,Lili Xie,IBM Redbooks
Publisher : IBM Redbooks
Page : 494 pages
File Size : 50,7 Mb
Release : 2011-08-18
Category : Computers
ISBN : 9780738435886

Get Book

IBM z/OS Mainframe Security and Audit Management Using the IBM Security zSecure Suite by Axel Buecker,Michael Cairns,Monique Conway,Mark S. Hahn,Deborah McLemore,Jamie Pease,Lili Xie,IBM Redbooks Pdf

Every organization has a core set of mission-critical data that must be protected. Security lapses and failures are not simply disruptions—they can be catastrophic events, and the consequences can be felt across the entire organization. As a result, security administrators face serious challenges in protecting the company's sensitive data. IT staff are challenged to provide detailed audit and controls documentation at a time when they are already facing increasing demands on their time, due to events such as mergers, reorganizations, and other changes. Many organizations do not have enough experienced mainframe security administrators to meet these objectives, and expanding employee skillsets with low-level mainframe security technologies can be time-consuming. The IBM® Security zSecure suite consists of multiple components designed to help you administer your mainframe security server, monitor for threats, audit usage and configurations, and enforce policy compliance. Administration, provisioning, and management components can significantly reduce administration, contributing to improved productivity, faster response time, and reduced training time needed for new administrators. This IBM Redbooks® publication is a valuable resource for security officers, administrators, and architects who wish to better understand their mainframe security solutions.

Author : Keith Winnard,Jose Gilberto Biondo Jr,Wilson de Figueiredo,Paul Robert Hering,IBM Redbooks
Publisher : IBM Redbooks
Page : 50 pages
File Size : 54,9 Mb
Release : 2015-12-17
Category : Computers
ISBN : 9780738441276

Get Book

IBM z/OS V2R2: Security by Keith Winnard,Jose Gilberto Biondo Jr,Wilson de Figueiredo,Paul Robert Hering,IBM Redbooks Pdf

This IBM® Redbooks® publication helps you to become familiar with the technical changes that were introduced to the security areas with IBM z/OS® V2R2. The following chapters are included: - Chapter 1, "RACF updates" on page 1: In this chapter, we describe the read-only auditor attribute, password security enhancements, RACDCERT (granular certificate administration), UNIX search authority, and RACF Remote sharing facility (RRSF). - Chapter 2, "LDAP updates" on page 13: In this chapter, we describe the activity log enhancements, compatibility level upgrade without LDAP outage, dynamic group performance enhancements, and replication of password policy attributes from a read-only replica. - Chapter 3, "PKI updates" on page 21: In this chapter, we describe the Network Authentication Service (KERBEROS) PKINIT, PKI nxm authorization, PKI OCSP enhancement, and RACDCERT (granular certificate administration) - Chapter 4, "z/OS UNIX search and file execution authority" on page 27: z/OS UNIX search authority, z/OS UNIX file execution, Examples for exploiting the new functions This book is one of a series of IBM Redbooks that take a modular approach to providing information about the updates that are included with z/OS V2R2. This approach has the following goals: - Provide modular content - Group the technical changes into a topic - Provide a more streamlined way of finding relevant information that is based on the topic We hope you find this approach useful and we welcome your feedback.

Author : Bill White,Cecilia Carranza Lewis,Eysha Shirrine Powers,David Rossi,Eric Rossman,Andy Coulsonr,Jacky Doll,Brad Habbershow,Thomas Liu,Ryan McCarry,Philippe Richard,Romoaldo Santos,Isabel Arnold,Kasper Lindberg,IBM Redbooks
Publisher : IBM Redbooks
Page : 274 pages
File Size : 45,5 Mb
Release : 2021-12-10
Category : Computers
ISBN : 9780738460222

Get Book

Getting Started with z/OS Data Set Encryption by Bill White,Cecilia Carranza Lewis,Eysha Shirrine Powers,David Rossi,Eric Rossman,Andy Coulsonr,Jacky Doll,Brad Habbershow,Thomas Liu,Ryan McCarry,Philippe Richard,Romoaldo Santos,Isabel Arnold,Kasper Lindberg,IBM Redbooks Pdf

This IBM® Redpaper Redbooks® publication provides a broad explanation of data protection through encryption and IBM Z® pervasive encryption with a focus on IBM z/OS® data set encryption. It describes how the various hardware and software components interact in a z/OS data set encryption environment. In addition, this book concentrates on the planning and preparing of the environment and offers implementation, configuration, and operational examples that can be used in z/OS data set encryption environments. This publication is intended for IT architects, system programmer, and security administrators who plan for, deploy, and manage security on the Z platform. The reader is expected to have a basic understanding of IBM Z security concepts.

Author : Axel Buecker,Michael Cairns,Monique Conway,Mark Hahn,Deborah McLemore,Jamie Pease,Lili Xie
Publisher : Unknown
Page : 494 pages
File Size : 55,7 Mb
Release : 2011
Category : Computer networks
ISBN : OCLC:1105805045

Get Book

IBM Z/OS Mainframe Security and Audit Management Using the IBM Security ZSecure Suite by Axel Buecker,Michael Cairns,Monique Conway,Mark Hahn,Deborah McLemore,Jamie Pease,Lili Xie Pdf

Every organization has a core set of mission-critical data that must be protected. Security lapses and failures are not simply disruptions--they can be catastrophic events, and the consequences can be felt across the entire organization. As a result, security administrators face serious challenges in protecting the company's sensitive data. IT staff are challenged to provide detailed audit and controls documentation at a time when they are already facing increasing demands on their time, due to events such as mergers, reorganizations, and other changes. Many organizations do not have enough experienced mainframe security administrators to meet these objectives, and expanding employee skillsets with low-level mainframe security technologies can be time-consuming. The IBM® Security zSecure suite consists of multiple components designed to help you administer your mainframe security server, monitor for threats, audit usage and configurations, and enforce policy compliance. Administration, provisioning, and management components can significantly reduce administration, contributing to improved productivity, faster response time, and reduced training time needed for new administrators. This IBM Redbooks® publication is a valuable resource for security officers, administrators, and architects who wish to better understand their mainframe security solutions.

Author : Lydia Parziale,Willian Rampazzo,IBM Redbooks
Publisher : IBM Redbooks
Page : 50 pages
File Size : 45,9 Mb
Release : 2015-04-03
Category : Computers
ISBN : 9780738454191

Get Book

End to End Security with z Systems by Lydia Parziale,Willian Rampazzo,IBM Redbooks Pdf

This IBM® RedpaperTM provides a broad understanding of the components necessary to secure your IBM z Systems environment. It provides an end-to-end architectural reference document for a use case that employs both mobile and analytics. It also provides an end to end explanation of security on z Systems from the systems of record through the systems of engagement. Security is described in terms of transactions, covering what happens after a transaction hits the system of engagement and what needs to be in place from that moment forward. The audience for this paper is IT architects and those planning to use z Systems for their mobile and analytics environments.

Author : Axel Buecker,Alisson Campos,Peter Cutler,Andy Hu,Garreth Jeremiah,Toshiki Matsui,Michal Zarakowski,IBM Redbooks
Publisher : IBM Redbooks
Page : 422 pages
File Size : 40,8 Mb
Release : 2012-08-22
Category : Computers
ISBN : 9780738436982

Get Book

Endpoint Security and Compliance Management Design Guide Using IBM Tivoli Endpoint Manager by Axel Buecker,Alisson Campos,Peter Cutler,Andy Hu,Garreth Jeremiah,Toshiki Matsui,Michal Zarakowski,IBM Redbooks Pdf

Organizations today are more widely distributed than ever before, which can make systems management tasks, such as distributing software, patches, and security policies, extremely challenging. The IBM® Tivoli® Endpoint Manager platform is architected for today's highly diverse, distributed, and complex IT environments. It provides real-time visibility and control through a single infrastructure, single agent, and single console for systems lifecycle management, endpoint protection, and security configuration and vulnerability management. This platform enables organizations to securely manage their global IT infrastructures faster and more accurately, resulting in improved governance, control, visibility, and business agility. Plus, it gives organizations the ability to handle tomorrow's unforeseen challenges. In this IBM Redbooks® publication, we provide IT security professionals with a better understanding around the challenging topic of endpoint management in the IT security domain. We focus on IBM Tivoli Endpoint Manager for Security and Compliance and describe the product architecture and provide a hands-on design guide for deploying the solution. This book is a valuable resource for security professionals and architects who want to understand and implement a centralized endpoint management infrastructure and endpoint protection to better handle security and compliance challenges.

Author : Anonim
Publisher : Unknown
Page : 128 pages
File Size : 53,8 Mb
Release : 2008
Category : Electronic
ISBN : OCLC:1047800587

Get Book

Z/OS Mainframe Security and Audit Management Using IBM Tivoli ZSecure by Anonim Pdf

Author : Anonim
Publisher : Unknown
Page : 440 pages
File Size : 48,5 Mb
Release : 2010
Category : Computer security
ISBN : OCLC:696633543

Get Book

IT Security Compliance Management Design Guide with IBM Tivoli Security Information and Event Manager by Anonim Pdf

Author : Helmut Hellner,Ingo Franzki,Antoinette Kaschner,Joerg Schmidbauer,Heiko Schnell,Klaus-Dieter Wacker,IBM Redbooks
Publisher : IBM Redbooks
Page : 440 pages
File Size : 45,6 Mb
Release : 2018-06-14
Category : Computers
ISBN : 9780738456911

Get Book

Security on IBM z/VSE by Helmut Hellner,Ingo Franzki,Antoinette Kaschner,Joerg Schmidbauer,Heiko Schnell,Klaus-Dieter Wacker,IBM Redbooks Pdf

One of a firm's most valuable resources is its data: client lists, accounting data, employee information, and so on. This critical data must be securely managed and controlled, and simultaneously made available to those users authorized to see it. The IBM® z/VSE® system features extensive capabilities to simultaneously share the firm's data among multiple users and protect them. Threats to this data come from various sources. Insider threats and malicious hackers are not only difficult to detect and prevent, they might be using resources with the business being unaware. This IBM Redbooks® publication was written to assist z/VSE support and security personnel in providing the enterprise with a safe, secure and manageable environment. This book provides an overview of the security that is provided by z/VSE and the processes for the implementation and configuration of z/VSE security components, Basic Security Manager (BSM), IBM CICS® security, TCP/IP security, single sign-on using LDAP, and connector security.

Author : Karan Singh,Rogerio Camargo,Simon Dodge,Bob McCormack,Alain Roessle,Martina Schmidt,Ruben Thumbiran,Phil Wakelin,Nigel Williams,IBM Redbooks
Publisher : IBM Redbooks
Page : 182 pages
File Size : 51,9 Mb
Release : 2011-09-29
Category : Computers
ISBN : 9780738436067

Get Book

z/OS Identity Propagation by Karan Singh,Rogerio Camargo,Simon Dodge,Bob McCormack,Alain Roessle,Martina Schmidt,Ruben Thumbiran,Phil Wakelin,Nigel Williams,IBM Redbooks Pdf

This IBM® Redbooks® publication explores various implementations of z/OS® Identity Propagation where the distributed identity of an end user is passed to z/OS and used to map to a RACF® user ID, and any related events in the audit trail from RACF show both RACF and distributed identities. This book describes the concept of identity propagation and how it can address the end-to end accountability issue of many customers. It describes, at a high level, what identity propagation is, and why it is important to us. It shows a conceptual view of the key elements necessary to accomplish this. This book provides details on the RACMAP function, filter management and how to use the SMF records to provide an audit trail. In depth coverage is provided about the internal implementation of identity propagation, such as providing information about available callable services. This book examines the current exploiters of z/OS Identity Propagation and provide several detailed examples covering CICS® with CICS Transaction Gateway, DB2®, and CICS Web services with Datapower.

Author : Axel Bücker
Publisher : International Technical Support Organization IBM
Page : 452 pages
File Size : 52,7 Mb
Release : 2008-01-01
Category : Computer security
ISBN : 0738431281

Get Book

Z/OS Mainframe Security and Audit Management Using IBM Tivoli ZSecure by Axel Bücker Pdf

Author : Axel Buecker,Scott Andrews,Craig Forster,Nicholas Harlow,Ming Lu,Sridhar Muppidi,Trevor Norvill,Philip Nye,Günter Waller,Eric T. White,IBM Redbooks
Publisher : IBM Redbooks
Page : 314 pages
File Size : 47,8 Mb
Release : 2011-10-26
Category : Computers
ISBN : 9780738436142

Get Book

IT Security Policy Management Usage Patterns Using IBM Tivoli Security Policy Manager by Axel Buecker,Scott Andrews,Craig Forster,Nicholas Harlow,Ming Lu,Sridhar Muppidi,Trevor Norvill,Philip Nye,Günter Waller,Eric T. White,IBM Redbooks Pdf

In a growing number of organizations, policies are the key mechanism by which the capabilities and requirements of services are expressed and made available to other entities. The goals established and driven by the business need to be consistently implemented, managed and enforced by the service-oriented infrastructure; expressing these goals as policy and effectively managing this policy is fundamental to the success of any IT and application transformation. First, a flexible policy management framework must be in place to achieve alignment with business goals and consistent security implementation. Second, common re-usable security services are foundational building blocks for SOA environments, providing the ability to secure data and applications. Consistent IT Security Services that can be used by different components of an SOA run time are required. Point solutions are not scalable, and cannot capture and express enterprise-wide policy to ensure consistency and compliance. In this IBM® Redbooks® publication, we discuss an IBM Security policy management solution, which is composed of both policy management and enforcement using IT security services. We discuss how this standards-based unified policy management and enforcement solution can address authentication, identity propagation, and authorization requirements, and thereby help organizations demonstrate compliance, secure their services, and minimize the risk of data loss. This book is a valuable resource for security officers, consultants, and architects who want to understand and implement a centralized security policy management and entitlement solution.