Security Information & Event Management Blog | SIEM

Mainframe Myth-Busting: File Integrity Monitoring is only for Windows/UNIX security systems.

Posted by Tony Perri on Feb 8, 2016 2:00:00 PM

That’s the thing about myths: they’re only partly true.

Yes, File Integrity Monitoring (FIM) has been part of the distributed computing landscape for a few years now. And yes, real-time enterprise security monitoring is harder to accomplish in a mainframe environment. But as attacks become more sophisticated, FIM needs to be a key component of the entire network, including your mainframe.

There’s a well-known software vendor that has an antivirus “sandbox” that is used to explode viruses in much like a police bomb squad would do with a suspicious package at a crime scene.

Read More

Topics: network security, PCI DSS compliance, Log Management, managing corporate IT security and compliance, z/OS security, mainframe security

Rounding out your SIEM Strategy with SNMP

Posted by Tony Perri on Dec 12, 2011 11:09:00 AM

MIB and SNMP traps have traditionally been used to track system health, performance and availability, but these network management tools are now finding their way into Information Security applications. Some security software vendors are now using a combination of SNMP and syslog data to identify potential security threats, linking their event management capability to take corrective action to isolate the security threats.

Read More

Topics: collect log data, end-user performance and availability, managing corporate IT security and compliance

10 Guidelines to Ensure a 2011 Happy PCI DSS Holiday Season

Posted by Jeff Davison on Nov 1, 2011 5:10:00 PM

With "Black Friday" fast approaching, I wanted to provide some guidelines for upholding the Payment Card Industry Data Security Standard (PCI DSS). The standard, managed by the PCI Security Standards Council, was founded by credit card giants American Express, Discover Financial Services, JCB International, MasterCard Worldwide, and Visa, Inc. The standard represents a common set of industry tools and measurements to help ensure the safe handling of sensitive information, and with more and more consumers purchasing online this holiday season, PCI DSS is clearly on the minds of IT security managers across the globe.

Read More

Topics: automated threat detection, PCI DSS compliance, managing corporate IT security and compliance

6 Log Management Questions to Ask this Holiday Shopping Season

Posted by Tony Perri on Oct 5, 2011 10:17:00 PM

Recently, one of our customers reported that they are running upwards of 200 million messages per day through the CorreLog Enterprise Server – and this is just from the IBM z/OS mainframe!  The closer we get to December 25, the more that number will balloon upwards.  Collecting all of this data is certainly a necessity for compliance standards, forensic analysis and managing end-user performance and availability.  But how can they possible make sense of all the data filing through every minute? 

Read More

Topics: compliance standards, automated threat detection, collect log data, PCI DSS compliance, Log Management, security threat, enterprise SIEM system, end-user performance and availability, managing corporate IT security and compliance, indexing and storing data

Subscribe via Email

Connect with CorreLog