Not so fast…what about MFIM.
File Integrity Monitoring (FIM) has been part of the distributed landscape for years, generally as a component of an enterprise anti-malware strategy. But as attacks.
PCI DSS Myth-Busting: When PCI DSS references File Integrity Monitoring, they are just talking about Windows/UNIX.
October 14, 2015
/
1 Comment
/
in
network security,
PCI DSS compliance,
Log Management,
z/OS security,
mainframe security
/
by Tony Perri
Guest blog post, z/OS security, from Barry Schrager Part 3 of 7: Where's the data?
July 15, 2015
/
0 Comments
/
in
insider threat,
compliance standards,
collect log data,
Log Management,
enterprise SIEM system
/
by Barry Schrager
Mainframe Security: Part 3 - Where is all your sensitive data?
One vulnerability I see a lot are copies of sensitive data outside of the production environment. This sensitive data, if disclosed, can.
Mainframe Security Part 2: User Authentication
How can a system accurately determine whether access to data should be allowed when it is not certain who the user is? We have seen this in the NSA -.
Guest blog post, z/OS security, from Barry Schrager Part 1 of 7: System Integrity
June 22, 2015
/
0 Comments
/
in
compliance standards,
Log Management,
z/OS security,
system integrity,
mainframe security
/
by Barry Schrager
Mainframe Security Part 1: System Integrity
I’m often asked about what installations can do to maximize their data security in an IBM mainframe environment. For those that do not know me, I was.
What to do when your mainframe catches a virus
8 Guidelines for monitoring mainframe security controls per PCI DSS Requirements
Now that we have your attention, allow us to expound on the.
Don’t expect to move your cyber-security gauge towards 'safe' until..
April 1, 2014
/
1 Comment
/
in
PCI DSS compliance,
Log Management,
security threat,
enterprise SIEM system
/
by Charles Mills
Your network is vulnerable because your log management practice fails to include real-time mainframe data.
The InfoSec World show is upon us. For those of you unfamiliar with InfoSec World, it is.
DAM that HACK! 7 ways your z/OS DB2 can alert you to cyber threat
March 18, 2013
/
0 Comments
/
in
compliance standards,
automated threat detection; event log management;,
collect log data,
PCI DSS compliance,
Log Management
/
by Tony Perri
Database Activity Monitoring (DAM) is defined by Gartner as “… tools that can be used to support the ability to identify and report on fraudulent, illegal or other undesirable behavior, with.
Event Data vs. Syslog Data: 4 points of distinction for the CISO
January 17, 2013
/
0 Comments
/
in
compliance standards,
automated threat detection; event log management;,
Log Management
/
by Tony Perri
It should come as no surprise that security information and event management, or SIEM, has been fueled by industry standards groups and government agencies. Leading the charge to how data and.
10 Step FIM Approach for Reliability, Data Security and Compliance
September 26, 2012
/
1 Comment
/
in
insider threat,
compliance standards,
automated threat detection,
Log Management,
enterprise SIEM system
/
by Tony Perri
One area that you shouldn’t overlook that can derail your ability to hit IT service level agreements (SLAs) is file integrity monitoring (FIM). Your inability to uphold file integrity compromises.
Mainframe SIEM Log Management in a Distributed IT Security World
August 9, 2012
/
1 Comment
/
in
automated threat detection,
collect log data,
Log Management,
enterprise SIEM system
/
by Tony Perri
Seems like every day we see news headlines about yet another cyber-breach. Government agencies, local municipalities, online gaming and social platforms, financial institutions, even high-school.