IBM Security zSecure Audit for RACF

Central management of security devices, policies and events to help evaluate and communicate your overall risk posture.

IBM Proventia® Management SiteProtector™ System provides central management of security devices to control policies, events, analysis and reporting for your business.

IBM Proventia® Management SiteProtector™ system offers a simpler, cost-effective way to manage security solutions and ease regulatory compliance by providing a central management point to control security policy, analysis, alerting and reporting for your business.

• Reduces the cost and complexity of security management through central control of diverse network and host security devices
• Enhances risk communication through event analytics and flexible, customizable reporting
• Leverages existing investments by integrating with current systems
• Provides flexibility to expand to support additional types and functions of security offerings
• Create reports easily using pre-defined templates
• Demonstrate Vulnerability Differentials by contrasting asset vulnerabilities for two distinct periods of time
• Perform basic customization with built-in filtering and sorting options
• Set permissions to allow users to generate and view reports for specified groups only
• Export to PDF, HTML and CSV formats
• Schedule reports to run daily, weekly, monthly or during off-peak hours
• View reports covering ticket reports for workflow, content and e-mail filtering reports, and Virus activity reports
• Escalate important events by generating additional responses outside the console (such as email or SMTP), or can de-emphasize less important events by reducing alert priority or by selectively preventing an event from being displayed or logged.
• Transfer SiteProtector centralized management system functionality to a secondary site in the event of catastrophic failure, network outage or disaster affecting your primary site

製品について

• 製品情報を調べる

ご購入 IBM Security zSecure Audit for RACF

詳細の表示詳細の非表示

Features, advantages and benefits

Features	Advantages	Benefits
Live analysis of critical information	Unlike offerings that only report on a copy of a database, with Security zSecure Audit you can access live data on mainframes running IBM z/OS® with RACF, delivering up-to-the-minute audit accuracy.	After auditing and analyzing the z/OS operating system, Security zSecure Audit prioritizes and highlights security concerns. A ranking of audit priorities indicates the relative impact of a problem.
Live analysis beyond z/OS and RACF	Security zSecure Audit provides extensive audit and analysis capabilities beyond z/OS systems, including the ability to audit UNIX® security definitions on the mainframe, IBM DB2® audit security events, CICS security events, IMS security events, Linux for System z events, audit security events from IBM Security Key Lifecycle Manager, WebSphere Application Server, OMEGAMON, Communications Server network configuration for TCP/IP, and PDS(E) member level auditing.	The software automatically finds problems in the security definitions in the UNIX subsystem. You can view critical activity, like privileged DBA activities, in DB2 systems on the mainframe.
Checks for and enforces program signatures.	Identify programs that are expected to have a valid signature and verify whether the signature is present. Configure system response to events initiated from programs without valid signatures: events can be allowed, audited or failed.	Comply with Payment Card Industry Data Security Standard.
Customized reports to meet specific needs	Security zSecure Audit can deliver optional e-mailed reports on a daily basis when specific events occur or when there is a possible security breach.
Flexible report and alert language	Security zSecure Audit uses CARLa Auditing and Reporting Language (CARLa), an extremely flexible, easy-to-learn language, so you can create new reports without incurring consulting costs.	You can modify both the displays and reports to build installation-specific system, RACF, and System Management Facility (SMF) reports.
DBCS support for audit reports	Support for DBCS characters in search strings and formatted output.	Audit concern reporting available in both English and DBCS.
NLS support for translating report titles, column headers, constants, and selection and scan values	Built-in support for translating reports and menus for NLS support.	User interface can be translated into other languages.
Analyze SMF log files to create a comprehensive audit trail	Supports external files of existing data; Filters external supplementary information from existing databases and corporate applications (such as unit, department and personnel data; Automatically generates reports that present this data beside the technical data from z/OS and RACF.	For example, if a policy exception, such as logging in after work hours, occurs, the software gathers the information about the user (name, matching user ID, department, e-mail address, and telephone details) from the personnel database.
Leverage external file support to make reports highly usable	Security zSecure Audit can support external files of existing data. It can filter external supplementary information from existing databases and corporate applications (such as unit, department and personnel data) and present it alongside the technical data from z/OS and RACF in automatically generated reports.	For example, if a policy exception takes place, such as logging in after work hours, then the information about the user (name, matching user ID, department, e-mail address and telephone details) is gathered from the personnel database.
Analyze RACF profiles to get fast answers	Security zSecure Audit uses the active or unloaded RACF database to analyze the defined user, group, data set, and resource profiles/entries.	You can obtain fast answers to questions such as “Who has access to this data set?” and “List all system specials who have not changed their passwords.”
Detect system changes to minimize security risks	Security zSecure Audit can identify: • Changes in the individual members of partitioned data sets, by using digital signatures for each member of the libraries under scrutiny; Identical members in the same or different libraries; Identically named members with different contents; Load module members touched by PTFs and zaps.	Security zSecure Audit indicates whether a member was added, deleted or changed. For load modules, Security zSecure Audit also identifies program temporary fixes (PTFs) and zaps applied to modules and reports the differences between two or more PTFs.
Track and monitor baseline changes for RACF	Security zSecure Audit can help you define a baseline for RACF security parameters. It can also find profiles and parameters that differ from the baseline. You can use changes in the indicators to update the baseline or tag them for follow-up.	You can simplify the implementation of security auditing by quickly establishing a baseline and measuring changes.
Detect integrity breaches	Security zSecure Audit includes a powerful system integrity analysis feature. Reports identify exposures and potential threats based on intelligent analysis built into the system.	Reports can reveal breaches in system integrity and other irregularities. These reports rank the severity of the exposure to help you determine what corrective action is needed.
Integrated remediation with Security zSecure Admin	Security zSecure Audit integrates smoothly with IBM Security zSecure Admin for end-to-end monitoring and remediation.	Administrators can move quickly to diagnose and remediate failures or exposures.
Seamless links to enterprise audit and compliance	Security zSecure Audit can automatically send security information from the mainframe into Tivoli Security Information and Event Manager.	You can easily include mainframe security information in company-wide audit and compliance reports.