1. Mainframe Blind Spots:
What You Can’t See Will Hurt You
14001-C St. Germain Dr. • Suite 809 • Centreville, VA 20121 • 703-825-1202 • www.infosecinc.com
INFOGRAPHIC
InfoSec, Inc., a small business, is a premier mainframe services and software provider with services focused on IBM-RACF, CA-ACF2
and CA-Top Secret. We have been providing high-quality mainframe services and software since 1998, from operating system
installation, upgrade, performance and tuning, third-party software support and more on both the z/OS and VM/VSE platforms,
offering the finest available expertise for securing and supporting IBM z/OS and VM/VSE environments and for the IBM-RACF,
CA-Top Secret and CA-ACF2 security systems.
There is a lack of real-time visibility to what is happening on
today’s mainframes. WHAT ARE YOU MISSING?
Any information breach is a bad breach.
You need a system that can alert you to
suspicious activity on your mainframe
before it becomes a breach.
of critical applications reside
on the mainframe.
90%
of the world’s
cumulative data resides
on mainframes.
65%
EMPLOYEE?
Most mainframe incidents
originate from internal
employees with access rights.
What You’re Doing Wrong With Mainframe Security
In-House Event
Monitoring
Reactive Event
Monitoring
Assumed
Security
The mainframe is wrongfully assumed to
be the most secure part of the IT
infrastructure.
HACKER?
Up to 80% of network
misuse incidents come from
within the organization itself.
The only way to know exactly what is happening on your mainframe at all
times is to be more vigilant about your monitoring practices.
Most reactive event logging methods
leave the mainframe unmonitored for
long periods of time before reports are
generated and viewed.
In-house monitoring code is often
outdated and requires additonal work
when switching vendors or during
staffing changes.
Even then, report can go unseen for
a period of time due to a busy day,
other priorities, or simple human
errors in judgement. Anything
suspicious can easily go unnoticed.
Aging code can put you at risk for falling
out of industry compliance standards as
well as generate additional problems
when trying to incorporate reporting.
Working with a third-party consulting partner could be your organization’s answer to creating a
mainframe security plan that keeps your entire infrastructure under the magnifying glass 24/7.
The team at InfoSec has 35 years of experience working with mainframes. We provide clients with
high-quality consulting services and software, resulting in increased operational efficiencies,
improved compliance, and decreased costs.