Numerous regulations require that sensitive data is protected and cannot be seen by unauthorized individuals, whether internal or external. Learn the keys to protecting files and data on the IBM i.
In today’s world of evolving threats and complex regulatory requirements, you must be confident that your IBM i system and data is secure – but this isn’t a one-and-done process. You must continuously monitor all system and database activity, identify security threats and compliance issues in real-time, and report on outcomes. With the growth of SIEM solutions, such as Splunk or IBM QRadar, you’ll also likely need to send IBM i security data to these platforms to enable a complete 360-degree view across the enterprise.
The good news is that IBM i log files and journals are rich sources of security-related system and database activity – if you know what to look for, and how to make sense of it.
View this webinar on-demand to learn best practices for capturing, monitoring, and reporting IBM i security data with SIEM solutions. During this webinar, we discuss topics such as:
• Key IBM i data and sources that must be monitored
• Automating real-time analysis of log files to identify threats to system and data
security
• Integrating IBM i security data into SIEM solutions for a clear view of security
across multiple platforms
Essential Layers of IBM i Security: Security Monitoring and AuditingPrecisely
Taking a holistic view of your security profile is critical to success. Grouping together security best practices and technologies into six primary layers, where each layer overlaps with the others, provides multiple lines of defense. Should one security layer be compromised, there’s a good chance that another layer will thwart a would-be intruder.
Our final webinar in this series focuses on monitoring the IBM i and automatically alerting administrators and security officers whenever suspicious activity is detected, as well as logging all security-related events for the purposes of tracking and auditing.
Monitoring and Reporting on IBM i Compliance and SecurityPrecisely
Today’s world of complex regulatory requirements and evolving security threats requires you to find simple ways to monitor all IBM i system and database activity, identify security threats and compliance issues in real time, produce clear and concise reports, and maintain an audit trail to satisfy security officers and auditors.
IBM i log files and journals are rich sources of system and database activity. However, they are in their own proprietary format, and they are not easy to manually analyze for security events. View this webinar on-demand to learn more about:
• Key IBM i log files and static data sources that must be monitored
• Automating real-time analysis of log files to identify threats to system and data security
• Integrating IBM i security data into SIEM solutions for a clear view of security across multiple platforms
IBM i Security: Identifying the Events That Matter MostPrecisely
Making Sense of Critical Security Data
Today’s world of complex regulatory requirements and evolving security threats requires finding simple ways to monitor all IBM i system and database activity, identify security threats and compliance issues in real time and produce clear reports.
The IBM i operating system produces a wealth of security-related information but organizations still face hurdles
in terms of working with such large data volumes. Integrating IBM i security information into a SIEM (Security Information and Event Management) solution is becoming critical to enable early detection and quick response to security incidents.
In this webinar, we will discuss:
- Key IBM i log files and static data sources that must be monitored
- Automating real-time analysis of log files to identify threats to system and data security
- Integrating IBM i security data into SIEM solutions for a clear view of security across multiple platforms
Protecting Your Business from Unauthorized IBM i AccessPrecisely
Understanding and controlling all the points of access to IBM i systems
IBM i is securable BUT not secured by default. To comply with increasingly strict IT security regulations, you must take control of all access points to your IBM i server. You can limit IBM i security threats by routinely assessing risks and taking control of logon security, powerful authorities, and system access.
With the right tools and process, you can ensure comprehensive control of unauthorized access and can trace any activity, suspicious or otherwise on your IBM i systems.
View this webcast on-demand to learn:
• How to secure network access and communication port
• How to implement different authentication options and tradeoffs
• How to limit the number of privileged user accounts
• How Syncsort’s security solutions can help
In today’s world of evolving threats and complex regulatory requirements, you must be confident that your IBM i system and data is secure – but this isn’t a one-and-done process. You must continuously monitor all system and database activity, identify security threats and compliance issues in real-time, and report on outcomes. With the growth of SIEM solutions, such as Splunk or IBM QRadar, you’ll also likely need to send IBM i security data to these platforms to enable a complete 360-degree view across the enterprise.
The good news is that IBM i log files and journals are rich sources of security-related system and database activity – if you know what to look for, and how to make sense of it.
View this webinar on-demand to learn best practices for capturing, monitoring, and reporting IBM i security data with SIEM solutions. During this webinar, we discuss topics such as:
• Key IBM i data and sources that must be monitored
• Automating real-time analysis of log files to identify threats to system and data
security
• Integrating IBM i security data into SIEM solutions for a clear view of security
across multiple platforms
Essential Layers of IBM i Security: Security Monitoring and AuditingPrecisely
Taking a holistic view of your security profile is critical to success. Grouping together security best practices and technologies into six primary layers, where each layer overlaps with the others, provides multiple lines of defense. Should one security layer be compromised, there’s a good chance that another layer will thwart a would-be intruder.
Our final webinar in this series focuses on monitoring the IBM i and automatically alerting administrators and security officers whenever suspicious activity is detected, as well as logging all security-related events for the purposes of tracking and auditing.
Monitoring and Reporting on IBM i Compliance and SecurityPrecisely
Today’s world of complex regulatory requirements and evolving security threats requires you to find simple ways to monitor all IBM i system and database activity, identify security threats and compliance issues in real time, produce clear and concise reports, and maintain an audit trail to satisfy security officers and auditors.
IBM i log files and journals are rich sources of system and database activity. However, they are in their own proprietary format, and they are not easy to manually analyze for security events. View this webinar on-demand to learn more about:
• Key IBM i log files and static data sources that must be monitored
• Automating real-time analysis of log files to identify threats to system and data security
• Integrating IBM i security data into SIEM solutions for a clear view of security across multiple platforms
IBM i Security: Identifying the Events That Matter MostPrecisely
Making Sense of Critical Security Data
Today’s world of complex regulatory requirements and evolving security threats requires finding simple ways to monitor all IBM i system and database activity, identify security threats and compliance issues in real time and produce clear reports.
The IBM i operating system produces a wealth of security-related information but organizations still face hurdles
in terms of working with such large data volumes. Integrating IBM i security information into a SIEM (Security Information and Event Management) solution is becoming critical to enable early detection and quick response to security incidents.
In this webinar, we will discuss:
- Key IBM i log files and static data sources that must be monitored
- Automating real-time analysis of log files to identify threats to system and data security
- Integrating IBM i security data into SIEM solutions for a clear view of security across multiple platforms
Protecting Your Business from Unauthorized IBM i AccessPrecisely
Understanding and controlling all the points of access to IBM i systems
IBM i is securable BUT not secured by default. To comply with increasingly strict IT security regulations, you must take control of all access points to your IBM i server. You can limit IBM i security threats by routinely assessing risks and taking control of logon security, powerful authorities, and system access.
With the right tools and process, you can ensure comprehensive control of unauthorized access and can trace any activity, suspicious or otherwise on your IBM i systems.
View this webcast on-demand to learn:
• How to secure network access and communication port
• How to implement different authentication options and tradeoffs
• How to limit the number of privileged user accounts
• How Syncsort’s security solutions can help
Security 101: Controlling Access to IBM i Systems and DataPrecisely
To protect your critical data from access by unauthorized users or intruders and to comply with increasingly strict IT security regulations, you must take control of all access points to your IBM i server. View this webinar on-demand to jump start your understanding of all the points of access that must be managed and how they can be secured using IBM i exit points.
You’ll learn:
• How to secure network access and communication ports
• How database access via open-source protocols can be secured
• How to take control of command execution
• How Syncsort’s security solutions can help
Get Mainframe Visibility to Enhance SIEM Efforts in SplunkPrecisely
The keys to effective security information and event management (SIEM) for IT environments include early detection, rapid response, and collaboration between all the platforms in your IT infrastructure. Yet many organizations struggle to effectively integrate their mainframe security needs with the rest of their IT environments.
With Syncsort Ironstream®, Splunk users can easily monitor and effectively resolve security issues on the mainframe by opening real-time operational data in Splunk Enterprise Security. We’ll take you through common security and compliance challenges organizations face and how Ironstream® can work with Splunk to eliminate those security blind spots.
View this webinar on-demand for a discussion about common security and compliance challenges organizations face and how Syncsort Ironstream® can work with Splunk to eliminate those security blind spots.
Key topics include:
• Proactive reporting to identify and solve problems before they happen
• Providing appropriate visibility to ensure management support
• Best practices for report types and presentation style
Security 101: Controlling Access to IBM i Systems and DataPrecisely
To protect your critical data from access by unauthorized users or intruders and to comply with increasingly strict IT security regulations, you must take control of all access points to your IBM i server. View this webinar on-demand to jump start your understanding of all the points of access that must be managed and how they can be secured using IBM i exit points.
You’ll learn:
• How to secure network access and communication ports
• How database access via open-source protocols can be secured
• How to take control of command execution
• How Syncsort’s security solutions can help
Essential Layers of IBM i Security: System-Access SecurityPrecisely
Better understand the strategies and tactics to keep unauthorized users out of your IBM i and maintain tight controls over what authorized users can do once logged in.
CNIT 125 7. Security Assessment and TestingSam Bowne
For a college course at Coastline Community College taught by Sam Bowne. Details at https://samsclass.info/125/125_F17.shtml
Based on: "CISSP Study Guide, Third Edition"; by Eric Conrad, Seth Misenar, Joshua Feldman; ISBN-10: 0128024372
In the first part of the Flash Friday webcast series, we talk about the importance of Data Quality for GDPR compliance. Enforcement of the General Data Protection Regulation (GDPR) begins in May of 2018.
View this webcast on demand to learn why Data Quality is critical for GDPR compliance and how Data Quality simultaneously benefits GDPR compliance and business growth.
This webcast and all related materials are provided for informational purposes only, and are not intended to provide, and should not be relied on for, legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organization you should consult your legal advisor.
This White Paper analyzes PCI compliance requirements and presents the specific iSecurity solutions pertinent to each of the 12 PCI compliance categories and to the appropriate sub-categories.
The New Assure Security: Complete IBM i Compliance and SecurityPrecisely
On April 8 Syncsort announced Assure Security, a new product that brings together Syncsort’s best-in-class IBM i security capabilities. Assure Security enables organizations like yours to comply with cybersecurity regulations and strengthen IBM i security through features that assess security vulnerabilities, control access to systems and data, enforce data privacy, and monitor for security incidents and compliance deviations.
View this webcast on-demand to learn all about Assure Security, including:
• How Syncsort’s security brands have come together in Assure Security
• How Assure Security automates security best practices and satisfies regulatory requirements
• How Syncsort can help you control access to IBM i systems and prevent data breaches
Performing a detailed security risk assessment is a time-consuming and challenging task. However, in today’s high-risk environment, it is required. A common misconception that can leave IBM i systems open to data breaches is that addressing physical and network security is enough to keep systems and data safe. Though controlling physical access and ensuring network security is important, the most common vulnerabilities in IBM i environments come from improper security configurations.
To understand security risks on your IBM i, it is essential to review security settings and configurations throughout the system. This requires significant knowledge of dozens of IBM i capabilities and their related configurations. Assure Security Risk Assessment thoroughly examines dozens of security settings, comparing values against best practice, to produce reports that identify security vulnerabilities.
View this webcast on-demand to learn:
• The dangers of improperly configured security setting on your IBM i
• How many compliance regulations, such as PCI DSS and HIPAA, require annual IT risk assessments
• How to request Syncsort’s FREE Assure Security Risk Assessment
Given the escalating threat landscape, a major focus area for many agencies will be improving the implementation of controls regarding privileged access.
Key Concepts for Protecting the Privacy of IBM i DataPrecisely
The continuous news of personal information stolen from major retailers and financial institutions have driven consumers and regulatory bodies to demand that more action be taken to ensure data protection and privacy. Regulations such as PCI DSS, HIPAA, GDPR, and FISMA require that personal data be protected against unauthorized access using technologies like encryption, tokenization, masking, secure file transfer and more.
With all the options available for securing IBM i data at rest and in motion, how do you know where to begin? View this webinar on-demand to get up to speed on the key concepts you need to know about assuring data privacy for your customers, business partners and employees. Topics include:
• Protecting data with encryption and the need for strong key management
• Use cases that are best for tokenization
• Options for permanently de-identifying data
• Securing data in motion across networks
Securing Sensitive IBM i Data At-Rest and In-MotionPrecisely
Driven by a continuous stream of news about personal information stolen from major retailers and financial institutions, consumers and regulatory bodies are demanding more in terms of data protection and privacy. Personal data protection is required by government and industry regulations such as PCI, HIPAA, GDPR, FISMA and more. Data encryption provides another layer of protection around IBM i Db2 columns that contain sensitive data, and it’s never been easier since the introduction of FIELDPROC in IBM i 7.1. Other solutions are also available to remove sensitive data from servers entirely and to secure data in motion.
View this 15-minute webcast on-demand and get up to speed on the key concepts you need to know to secure sensitive data on your IBM i servers, including topics such as:
• FIELDPROC encryption and key management
• Tokenization and anonymization
• Tools for securing data in motion
• Tradeoffs between do-it-yourself and third-party solutions
Security 101: Controlling Access to IBM i Systems and DataPrecisely
To protect your critical data from access by unauthorized users or intruders and to comply with increasingly strict IT security regulations, you must take control of all access points to your IBM i server. View this webinar on-demand to jump start your understanding of all the points of access that must be managed and how they can be secured using IBM i exit points.
You’ll learn:
• How to secure network access and communication ports
• How database access via open-source protocols can be secured
• How to take control of command execution
• How Syncsort’s security solutions can help
Get Mainframe Visibility to Enhance SIEM Efforts in SplunkPrecisely
The keys to effective security information and event management (SIEM) for IT environments include early detection, rapid response, and collaboration between all the platforms in your IT infrastructure. Yet many organizations struggle to effectively integrate their mainframe security needs with the rest of their IT environments.
With Syncsort Ironstream®, Splunk users can easily monitor and effectively resolve security issues on the mainframe by opening real-time operational data in Splunk Enterprise Security. We’ll take you through common security and compliance challenges organizations face and how Ironstream® can work with Splunk to eliminate those security blind spots.
View this webinar on-demand for a discussion about common security and compliance challenges organizations face and how Syncsort Ironstream® can work with Splunk to eliminate those security blind spots.
Key topics include:
• Proactive reporting to identify and solve problems before they happen
• Providing appropriate visibility to ensure management support
• Best practices for report types and presentation style
Security 101: Controlling Access to IBM i Systems and DataPrecisely
To protect your critical data from access by unauthorized users or intruders and to comply with increasingly strict IT security regulations, you must take control of all access points to your IBM i server. View this webinar on-demand to jump start your understanding of all the points of access that must be managed and how they can be secured using IBM i exit points.
You’ll learn:
• How to secure network access and communication ports
• How database access via open-source protocols can be secured
• How to take control of command execution
• How Syncsort’s security solutions can help
Essential Layers of IBM i Security: System-Access SecurityPrecisely
Better understand the strategies and tactics to keep unauthorized users out of your IBM i and maintain tight controls over what authorized users can do once logged in.
CNIT 125 7. Security Assessment and TestingSam Bowne
For a college course at Coastline Community College taught by Sam Bowne. Details at https://samsclass.info/125/125_F17.shtml
Based on: "CISSP Study Guide, Third Edition"; by Eric Conrad, Seth Misenar, Joshua Feldman; ISBN-10: 0128024372
In the first part of the Flash Friday webcast series, we talk about the importance of Data Quality for GDPR compliance. Enforcement of the General Data Protection Regulation (GDPR) begins in May of 2018.
View this webcast on demand to learn why Data Quality is critical for GDPR compliance and how Data Quality simultaneously benefits GDPR compliance and business growth.
This webcast and all related materials are provided for informational purposes only, and are not intended to provide, and should not be relied on for, legal advice pertaining to the subject matter. If you have specific questions on how this may affect your organization you should consult your legal advisor.
This White Paper analyzes PCI compliance requirements and presents the specific iSecurity solutions pertinent to each of the 12 PCI compliance categories and to the appropriate sub-categories.
The New Assure Security: Complete IBM i Compliance and SecurityPrecisely
On April 8 Syncsort announced Assure Security, a new product that brings together Syncsort’s best-in-class IBM i security capabilities. Assure Security enables organizations like yours to comply with cybersecurity regulations and strengthen IBM i security through features that assess security vulnerabilities, control access to systems and data, enforce data privacy, and monitor for security incidents and compliance deviations.
View this webcast on-demand to learn all about Assure Security, including:
• How Syncsort’s security brands have come together in Assure Security
• How Assure Security automates security best practices and satisfies regulatory requirements
• How Syncsort can help you control access to IBM i systems and prevent data breaches
Performing a detailed security risk assessment is a time-consuming and challenging task. However, in today’s high-risk environment, it is required. A common misconception that can leave IBM i systems open to data breaches is that addressing physical and network security is enough to keep systems and data safe. Though controlling physical access and ensuring network security is important, the most common vulnerabilities in IBM i environments come from improper security configurations.
To understand security risks on your IBM i, it is essential to review security settings and configurations throughout the system. This requires significant knowledge of dozens of IBM i capabilities and their related configurations. Assure Security Risk Assessment thoroughly examines dozens of security settings, comparing values against best practice, to produce reports that identify security vulnerabilities.
View this webcast on-demand to learn:
• The dangers of improperly configured security setting on your IBM i
• How many compliance regulations, such as PCI DSS and HIPAA, require annual IT risk assessments
• How to request Syncsort’s FREE Assure Security Risk Assessment
Given the escalating threat landscape, a major focus area for many agencies will be improving the implementation of controls regarding privileged access.
Key Concepts for Protecting the Privacy of IBM i DataPrecisely
The continuous news of personal information stolen from major retailers and financial institutions have driven consumers and regulatory bodies to demand that more action be taken to ensure data protection and privacy. Regulations such as PCI DSS, HIPAA, GDPR, and FISMA require that personal data be protected against unauthorized access using technologies like encryption, tokenization, masking, secure file transfer and more.
With all the options available for securing IBM i data at rest and in motion, how do you know where to begin? View this webinar on-demand to get up to speed on the key concepts you need to know about assuring data privacy for your customers, business partners and employees. Topics include:
• Protecting data with encryption and the need for strong key management
• Use cases that are best for tokenization
• Options for permanently de-identifying data
• Securing data in motion across networks
Securing Sensitive IBM i Data At-Rest and In-MotionPrecisely
Driven by a continuous stream of news about personal information stolen from major retailers and financial institutions, consumers and regulatory bodies are demanding more in terms of data protection and privacy. Personal data protection is required by government and industry regulations such as PCI, HIPAA, GDPR, FISMA and more. Data encryption provides another layer of protection around IBM i Db2 columns that contain sensitive data, and it’s never been easier since the introduction of FIELDPROC in IBM i 7.1. Other solutions are also available to remove sensitive data from servers entirely and to secure data in motion.
View this 15-minute webcast on-demand and get up to speed on the key concepts you need to know to secure sensitive data on your IBM i servers, including topics such as:
• FIELDPROC encryption and key management
• Tokenization and anonymization
• Tools for securing data in motion
• Tradeoffs between do-it-yourself and third-party solutions
Controlling Access to IBM i Systems and DataPrecisely
Security best practice and regulations such as SOX, HIPAA, GDPR and others require you to restrict access to your critical IBM i systems and their data, but this is easier said than done. Legacy, proprietary access protocols now co-exist with new, open-source protocols to create access control headaches.
View this webcast on-demand for an in-depth discussion of IBM i access points that must be secured and how exit points can be leveraged to accomplish the task. We’ll cover:
• Securing network access and communication ports
• How database access via open-source protocols can be secured
• Taking control of command execution
Protect Sensitive Data on Your IBM i (Social Distance Your IBM i/AS400)Precisely
The continuous news of personal information stolen from major retailers and financial institutions have driven consumers and regulatory bodies to demand that more action be taken to ensure data protection and privacy. Regulations such as PCI DSS, HIPAA, GDPR, and FISMA require that personal data be protected against unauthorized access using technologies like encryption, tokenization, masking, secure file transfer and more.
With all the options available for securing IBM i data at rest and in motion, how do you know where to begin?
Register to get up to speed on the key concepts you need to know about assuring data privacy for your customers, business partners and employees.
Topics will include:
- Protecting data with encryption and the need for strong key management
- Use Cases that are best for tokenization
- Options for permanently deidentifying data
- Securing data in motion across networks
BIG IRON, BIG RISK? SECURING THE MAINFRAME - #MFSummit2017Micro Focus
Regulatory requirements such as GDPR are
platform agnostic – and who can predict what
further challenges lie ahead? It certainly will not
become any easier. Security for the mainframe
is likely to remain a live issue. If you have a
mainframe then this affects you. Fortunately, the
help is out there. Attend this session to discover
how Micro Focus can secure your mainframe
environment today and into the future.
Expand Your Control of Access to IBM i Systems and DataPrecisely
Controlling all the ways your company’s data is being accessed, especially given the proliferation of open source software and other non-traditional data-access methods, is critical to ensuring security and regulatory compliance. This webinar reviews the different ways your data can be accessed, discusses how exit points work and how they can be managed, and why a global data access control strategy is especially important to efficiently protect sensitive data against unwanted access.
Topics include:
• IBM i access methods and risks
• Using exit programs to block traditional and modern access methods
• Real life examples and perspectives
IBM i HA and Security: Why They Need to Work TogetherPrecisely
Since your IBM i environment handle some of your most mission critical workloads, protecting them is imperative. High availability solutions are there to help you minimize or virtually eliminate downtime. IBM i security is an ongoing concern for IBM i shops due to threats of ransomware and other malware, as well as various regulations and audit requirements.
When HA/DR and security can work together, you can get an even greater ROI from these important solutions.
Join us for this webcast to hear about:
• The benefits of coordinating your HA/DR and your security
• Implications for security, switching, and replication
• Establishing effective reporting and monitoring
What Does a Full Featured Security Strategy Look Like?Precisely
In today’s IT world, the threats from bad actors are increasing and the negative impacts of a data breach continue to rise. Responsible enterprises have an obligation to handle the personal data of their customers with care and protect their company’s information with all the tools at their disposal.
For IBM i customers, this includes system settings, company-wide security protocols and the strategic use of additional third-party solutions. These solutions should include things like multi factor authentication (MFA), auditing and SEIM features, access control, authority elevation, and more. In this presentation, we will help you understand how all these elements can work together to create an effective, comprehensive IBM i security environment.
Watch this on-demand webinar to learn about:
• taking a holistic approach to IBM i Security
• what to look for when you consider adding a security product to your IBM i IT infrastructure.
• the components to consider a comprehensive, effective security strategy
• how Precisely can help
Secure Channels financial institution presentation. Featuring solutions using key management. Learn more about our patented encryption by visiting www.securechannels.com
IBM i is securable BUT not secured by default. To help protect your organization from the increasing security threats, you must take control of all access points to your IBM i server. You can limit IBM i security threats by routinely assessing your risks and taking control of logon security, powerful authorities, and system access.
With the right tools and process, you can assure comprehensive control of unauthorized access and can trace any activity, suspicious or otherwise, on your IBM i systems.
Watch this on-demand webcast to learn:
• How to secure network access and communication ports
• How to implement different authentication options and tradeoffs
• How to limit the number of privileged user accounts
• How Precisely’s Assure Security can help
Practical security - access control, least privilege, cryptography at work, security attacks and pen testing your system with MetaSploit. The enemy knows the system. Not security by obscurity
Social Distance Your IBM i from Cybersecurity RiskPrecisely
The continuous news of personal information stolen from major retailers and financial institutions have driven consumers and regulatory bodies to demand that more action be taken to ensure data protection and privacy. Regulations such as PCI DSS, HIPAA, GDPR, and FISMA require that personal data be protected against unauthorized access using technologies like encryption, tokenization, masking, secure file transfer and more. With all the options available for securing IBM i data at rest and in motion, how do you know where to begin?
Register to get up to speed on the key concepts you need to know about assuring data privacy for your customers, business partners and employees.
Topics will include:
- Protecting data with encryption and the need for strong key management
- Use Cases that are best for tokenization
- Options for permanently deidentifying data
- Securing data in motion across networks
- Complete security solution for IBM I (AS/400)
Enterprise Security in Mainframe-Connected EnvironmentsPrecisely
Mainframe continues to power critical operations in enterprise IT – making it susceptible to external threats and attacks.
With Syncsort Ironstream, Splunk users can easily monitor and effectively resolve application, security and network problems on the mainframe, by opening up real-time operational data in Splunk Enterprise.
View this 15-minute webinar on-demand where we described the security and compliance challenges organizations face and how Ironstream® can work with Splunk to eliminate those security blindspots.
Taking Control of Access to Your IBM i Systems and DataPrecisely
The days when the IBM i was isolated from other systems and configuring security was a relatively simple matter are long gone. As the IBM i has become interconnected with other systems, the way in which it can be accessed have grown – and the task of protecting it from intrusion has become more complex. To ensure the security of your organization’s critical data and applications, and to comly with increasingly strict IT security regulations, you must control the numerous means by which your IBM i systems can be accessed.
Watch this 15-minute webcast to learn how exit points provided by the IBM i OS can be used to monitor and secure access to IBM i systems and data.
Understand the importance of Data Loss Prevention (DLP) in an evolving threat landscape. An overview to various data transfer channels, security concerns and how Seqrite Data Loss Prevention can tackle those challanges.
Similar to Essential Layers of IBM i Security: File and Field Security (20)
AI-Ready Data - The Key to Transforming Projects into Production.pptxPrecisely
Moving AI projects from the laboratory to production requires careful consideration of data preparation. Join us for a fireside chat where industry experts, including Antonio Cotroneo (Director, Product Marketing, Precisely) and Sanjeev Mohan (Principal, SanjMo), will discuss the crucial role of AI-ready data in achieving success in AI projects. Gain essential insights and considerations to ensure your AI solutions are built on a solid foundation of accurate, consistent, and context-rich data. Explore practical insights and learn how data integrity drives innovation and competitive advantage. Transform your approach to AI with a focus on data readiness.
Building a Multi-Layered Defense for Your IBM i SecurityPrecisely
In today's challenging security environment, new vulnerabilities emerge daily, leaving even patched systems exposed. While IBM works tirelessly to release fixes as they discover vulnerabilities, bad actors are constantly innovating. Don't settle for reactive defense – secure your IT with a layered approach!
This holistic strategy builds multiple security walls, making it far harder for attackers to breach your defenses. Even if a certain vulnerability is exploited, one of the controls could stop the attack or at least delay it until you can take action.
Join us for this webcast to hear about:
• How security risks continue to evolve and change
• The importance of keeping all your systems patched an up-to-date
• A multi-layered approach to network, system object and data security
Navigating the Cloud: Best Practices for Successful MigrationPrecisely
In today's digital landscape, migrating workloads and applications to the cloud has become imperative for businesses seeking scalability, flexibility, and efficiency. However, executing a seamless transition requires strategic planning and careful execution. Join us as we delve into the insightful insights around cloud migration, where we will explore three key topics:
i. Considerations to take when planning for cloud migration
ii. Best practices for successfully migrating to the cloud
iii. Real-world customer stories
Unlocking the Power of Your IBM i and Z Security Data with Google ChroniclePrecisely
In today's ever-evolving threat landscape, any siloed systems, or data leave organizations vulnerable. This is especially true when mission-critical systems like IBM i and IBM Z mainframes are not included in your security planning. Valuable security data from these systems often remains isolated, hindering your ability to detect and respond to threats effectively.
Ironstream and bridge this gap for IBM systems by integrating the important security data from these mission-critical systems into Google Chronicle where it can be seen, analyzed and correlated with the data from other enterprise systems Here's what you'll learn:
• The unique challenges of securing IBM i and Z mainframes
• Why traditional security tools fall short for mainframe data
• The power of Google Chronicle for unified security intelligence
• How to gain comprehensive visibility into your entire IT ecosystem
• Real-world use cases for integrating IBM i and Z security data with Google Chronicle
Join us for this webcast to hear about:
• The unique challenges of securing IBM i and IBM Z systems
• Real-world use cases for integrating IBM i and IBM Z security data with Google Chronicle
• Combining Ironstream and Google Chronicle to deliver faster threat detection, investigation, and response times
Unlocking the Potential of the Cloud for IBM Power SystemsPrecisely
Are you considering leveraging the cloud alongside your existing IBM AIX and IBM I systems infrastructure? There are likely benefits to be realized in scalability, flexibility and even cost.
However, to realize these benefits, you need to be aware of the challenges and opportunities that come with integrating your IBM Power Systems in the cloud. These challenges range from data synchronization to testing to planning for fallback in the event of problems.
Join us for this webcast to hear about:
• Seamless migration strategies
• Best practices for operating in the cloud
• Benefits of cloud-based HA/DR for IBM AIX and IBM i
It can be challenging display and share capacity data that is meaningful to end users. There is an overabundance of data points related to capacity, and the summarization of this data is difficult to construct and display.
You are already spending time and money to handle the critical need to manage systems capacity, performance and estimate future needs. Are you it spending wisely? Are you getting the level of results from your investment that you really need? Can you prove it?
The good news is that the return on investment of implementing capacity management and capacity planning is most definitely positive and provable, both in terms of tangible monetary value and in some less tangible but no-less-valuable benefits.
Join us for this webinar and learn:
• Top Trends in Capacity Management
• Common customer pain points
• Ways to demonstrate these benefits to your company
Automate Studio Training: Materials Maintenance Tips for Efficiency and Ease ...Precisely
Ready to improve efficiency, provide easy to use data automations and take materials master (MM) data maintenance to the next level?
Find out how during our Automate Studio training on March 28 – led by Sigrid Kok, Principal Sales Engineer, and Isra Azam, Sales Engineer, at Precisely.
This session’s for you if you want to discover the best approaches for creating, extending or maintaining different types of materials, as well as automating the tricky parts of these processes that slow you down.
Greater control over your Automate Studio business processes means bigger, better results. We’ll show you how to enable your business users to interact with SAP from Microsoft Office and other familiar platforms – resulting in more efficient SAP data management, along with improved data integrity and accuracy.
This 90-minute session will be filled with a variety of topics, including:
real world approaches for creating multiple types of materials, balancing flexibility and power with simplicity and ease of use
tips on material creation, including
downloading the generated material number
using formulas to format prior to upload, such as capitalization or zero padding to make it easy to get the data right the first time
conditionally require fields based on other field entries
using LOV for fields that are free form entry for standard values
tips on modifying alternate units of measure, building from scratch using GUI scripting
modify multiple language descriptions, build from scratch using a standard BAPI
make end-to-end MM process flows more of a reality with features including APIs and predictive AI
Through these topics, you’ll gain plenty of actionable takeaways that you can start implementing right away – including how to:
improve your data integrity and accuracy
make scripts flexible and usable for automation users
seamlessly handle both simple and complex parts of material master
interact with SAP from both business user and script developers’ perspectives
easily upload and download data between SAP and Excel – and how to format the data before upload using simple formulas
You’ll leave this session feeling ready and empowered to save time, boost efficiency, and change the way you work.
Automate Studio reduces your dependency on technical resources to help you create automation scenarios – and our team of experts is here to make sure you get the most out of our solution throughout the journey.
Questions? Sigrid & Isra will be ready to answer them during a live Q&A at the end of the session.
Who should attend:
Attendees who will get the most out of this session are Automate Studio developers and runners familiar with SAP MM. Knowledge of Automate Studio script creation is nice to have, but not required.
Leveraging Mainframe Data in Near Real Time to Unleash Innovation With Cloud:...Precisely
Join us for an insightful roundtable discussion featuring experts from AWS, Confluent, and Precisely as they delve into the complexities and opportunities of migrating mainframe data to the cloud.
In this engaging webinar, participants will learn about the various considerations, strategies, and customer challenges associated with replicating mainframe data to cloud environments.
Our panelists will share practical insights, real-world experiences, and best practices to help organizations successfully navigate this transformative journey.
Whether you're considering migrating and modernizing your mainframe applications to cloud, or augmenting mainframe-based applications with data replication to cloud, this roundtable will provide valuable perspectives and insights to maximize the benefits of migrating mainframe data to the cloud.
Join us on March 27 to gain a deeper understanding of the opportunities and challenges in this evolving landscape.
Data Innovation Summit: Data Integrity TrendsPrecisely
Data integrity remains an evolving process of discovery, identification, and resolution. With an all-time low in public confidence on data being used for decision-making, attention has gradually shifted to data quality and data integration across multiple systems and frameworks. Data integrity becomes a focal point again for companies to make strategic moves in a world facing an evolving economy.
Key takeaways:
· How to build a data-driven culture within your organization
· Tips to engage with key stakeholders in your business and examples from other businesses around the world
· How to establish and maintain a business-first approach to data governance
· A summary of the findings from a recent survey of global data executives by Drexel University's LeBow College of Business
AI You Can Trust - Ensuring Success with Data Integrity WebinarPrecisely
Artificial Intelligence (AI) has become a strategic imperative in a rapidly evolving business landscape. However, the rush to embrace AI comes with risks, as illustrated by instances of AI-generated content with fake citations and potentially dangerous recommendations. The critical factor underpinning trustworthy AI is data integrity, ensuring data is accurate, consistent, and full of rich context.
Attend our upcoming webinar, "AI You Can Trust: Ensuring Success with Data Integrity," as we explore organizational challenges in maintaining data integrity for AI applications and real-world use cases showcasing the transformative impact of high-integrity data on AI success.
During this panel discussion, we'll highlight everything from personalized recommendations and AI-powered workflows to machine learning applications and innovative AI assistants.
Key Topics:
AI Use Cases with Data Integrity: Discover how data integrity shapes the success of AI applications through six compelling use cases.
Solving AI Challenges: Uncover practical solutions to common AI challenges such as bias, unreliable results, lack of contextual relevance, and inadequate data security.
Three Considerations of Data Integrity for AI: Learn the essential pillars—complete, trusted, and contextual—that underpin data integrity for AI success.
Precisely and AWS Partnership: Explore how the collaboration between Precisely and Amazon Web Services (AWS) addresses these challenges and empowers organizations to achieve AI-ready data.
Join our panelists to unlock the full potential of AI by starting your data integrity journey today. Trust in AI begins with trusted data – let's future-proof your AI together.
Less Bias. More Accurate. Relevant Outcomes.
Optimisez la fonction financière en automatisant vos processus SAPPrecisely
La fonction finance est au cœur du succès de l’entreprise, et doit aussi évoluer pour faire face aux enjeux d’aujourd’hui : aller plus vite, traiter plus d’informations et assurer une qualité des données sans faille.
Nous vous proposons de découvrir ensemble comment répondre à ces défis, notamment les points suivants :
Gérer les référentiels comptables et financiers, comptes comptables, clients, fournisseurs, centres de couts, centres de profits…Accélérer les clôtures et permettre de passer les écritures comptables nécessaires, de lancer les rapports adéquats et d’extraire les informations en temps réelOrganiser les taches en les affectant de manière ordonnancée à leurs responsables ou en les lançant automatiquement et les suivre de manière granulaire
Notre webinaire sera l’occasion d’évoquer et d’illustrer cette palette de capacités disponibles pour des utilisateurs métier sans code ou avec peu de code et nous vous espérons nombreux.
In dieser Präsentation diskutieren wir, welche Tools aus unserer Sicht dabei helfen, die Transformation zu SAP S/4HANA optimal zu gestalten. Aber wir blicken auch nach vorne!
In unserem Beitrag fokussieren wir uns nicht nur auf kurzfristige Lösungen, sondern es geht auch um das Thema „Nachhaltigkeit“. Um Investitionen für die Zukunft.
Dazu gehören Entwicklungen, die die SAP Welt nachhaltig verändern werden.
Wir betrachten zukünftige Technologien, wie KI oder Machine Learning, die dazu beitragen, datenintensive SAP Prozesse zu optimieren, die Datenqualität zu verbessern, manuelle Prozesse zu reduzieren und Mitarbeiter zu entlasten.
Werfen Sie mit uns einen Blick in die Zukunft und gestalten Sie die digitale Transformation in Ihrem Unternehmen mit.
Kubernetes & AI - Beauty and the Beast !?! @KCD Istanbul 2024Tobias Schneck
As AI technology is pushing into IT I was wondering myself, as an “infrastructure container kubernetes guy”, how get this fancy AI technology get managed from an infrastructure operational view? Is it possible to apply our lovely cloud native principals as well? What benefit’s both technologies could bring to each other?
Let me take this questions and provide you a short journey through existing deployment models and use cases for AI software. On practical examples, we discuss what cloud/on-premise strategy we may need for applying it to our own infrastructure to get it to work from an enterprise perspective. I want to give an overview about infrastructure requirements and technologies, what could be beneficial or limiting your AI use cases in an enterprise environment. An interactive Demo will give you some insides, what approaches I got already working for real.
UiPath Test Automation using UiPath Test Suite series, part 3DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 3. In this session, we will cover desktop automation along with UI automation.
Topics covered:
UI automation Introduction,
UI automation Sample
Desktop automation flow
Pradeep Chinnala, Senior Consultant Automation Developer @WonderBotz and UiPath MVP
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Smart TV Buyer Insights Survey 2024 by 91mobiles.pdf91mobiles
91mobiles recently conducted a Smart TV Buyer Insights Survey in which we asked over 3,000 respondents about the TV they own, aspects they look at on a new TV, and their TV buying preferences.
GDG Cloud Southlake #33: Boule & Rebala: Effective AppSec in SDLC using Deplo...James Anderson
Effective Application Security in Software Delivery lifecycle using Deployment Firewall and DBOM
The modern software delivery process (or the CI/CD process) includes many tools, distributed teams, open-source code, and cloud platforms. Constant focus on speed to release software to market, along with the traditional slow and manual security checks has caused gaps in continuous security as an important piece in the software supply chain. Today organizations feel more susceptible to external and internal cyber threats due to the vast attack surface in their applications supply chain and the lack of end-to-end governance and risk management.
The software team must secure its software delivery process to avoid vulnerability and security breaches. This needs to be achieved with existing tool chains and without extensive rework of the delivery processes. This talk will present strategies and techniques for providing visibility into the true risk of the existing vulnerabilities, preventing the introduction of security issues in the software, resolving vulnerabilities in production environments quickly, and capturing the deployment bill of materials (DBOM).
Speakers:
Bob Boule
Robert Boule is a technology enthusiast with PASSION for technology and making things work along with a knack for helping others understand how things work. He comes with around 20 years of solution engineering experience in application security, software continuous delivery, and SaaS platforms. He is known for his dynamic presentations in CI/CD and application security integrated in software delivery lifecycle.
Gopinath Rebala
Gopinath Rebala is the CTO of OpsMx, where he has overall responsibility for the machine learning and data processing architectures for Secure Software Delivery. Gopi also has a strong connection with our customers, leading design and architecture for strategic implementations. Gopi is a frequent speaker and well-known leader in continuous delivery and integrating security into software delivery.
GraphRAG is All You need? LLM & Knowledge GraphGuy Korland
Guy Korland, CEO and Co-founder of FalkorDB, will review two articles on the integration of language models with knowledge graphs.
1. Unifying Large Language Models and Knowledge Graphs: A Roadmap.
https://arxiv.org/abs/2306.08302
2. Microsoft Research's GraphRAG paper and a review paper on various uses of knowledge graphs:
https://www.microsoft.com/en-us/research/blog/graphrag-unlocking-llm-discovery-on-narrative-private-data/
UiPath Test Automation using UiPath Test Suite series, part 4DianaGray10
Welcome to UiPath Test Automation using UiPath Test Suite series part 4. In this session, we will cover Test Manager overview along with SAP heatmap.
The UiPath Test Manager overview with SAP heatmap webinar offers a concise yet comprehensive exploration of the role of a Test Manager within SAP environments, coupled with the utilization of heatmaps for effective testing strategies.
Participants will gain insights into the responsibilities, challenges, and best practices associated with test management in SAP projects. Additionally, the webinar delves into the significance of heatmaps as a visual aid for identifying testing priorities, areas of risk, and resource allocation within SAP landscapes. Through this session, attendees can expect to enhance their understanding of test management principles while learning practical approaches to optimize testing processes in SAP environments using heatmap visualization techniques
What will you get from this session?
1. Insights into SAP testing best practices
2. Heatmap utilization for testing
3. Optimization of testing processes
4. Demo
Topics covered:
Execution from the test manager
Orchestrator execution result
Defect reporting
SAP heatmap example with demo
Speaker:
Deepak Rai, Automation Practice Lead, Boundaryless Group and UiPath MVP
Epistemic Interaction - tuning interfaces to provide information for AI supportAlan Dix
Paper presented at SYNERGY workshop at AVI 2024, Genoa, Italy. 3rd June 2024
https://alandix.com/academic/papers/synergy2024-epistemic/
As machine learning integrates deeper into human-computer interactions, the concept of epistemic interaction emerges, aiming to refine these interactions to enhance system adaptability. This approach encourages minor, intentional adjustments in user behaviour to enrich the data available for system learning. This paper introduces epistemic interaction within the context of human-system communication, illustrating how deliberate interaction design can improve system understanding and adaptation. Through concrete examples, we demonstrate the potential of epistemic interaction to significantly advance human-computer interaction by leveraging intuitive human communication strategies to inform system design and functionality, offering a novel pathway for enriching user-system engagements.
The Art of the Pitch: WordPress Relationships and SalesLaura Byrne
Clients don’t know what they don’t know. What web solutions are right for them? How does WordPress come into the picture? How do you make sure you understand scope and timeline? What do you do if sometime changes?
All these questions and more will be explored as we talk about matching clients’ needs with what your agency offers without pulling teeth or pulling your hair out. Practical tips, and strategies for successful relationship building that leads to closing the deal.
LF Energy Webinar: Electrical Grid Modelling and Simulation Through PowSyBl -...DanBrown980551
Do you want to learn how to model and simulate an electrical network from scratch in under an hour?
Then welcome to this PowSyBl workshop, hosted by Rte, the French Transmission System Operator (TSO)!
During the webinar, you will discover the PowSyBl ecosystem as well as handle and study an electrical network through an interactive Python notebook.
PowSyBl is an open source project hosted by LF Energy, which offers a comprehensive set of features for electrical grid modelling and simulation. Among other advanced features, PowSyBl provides:
- A fully editable and extendable library for grid component modelling;
- Visualization tools to display your network;
- Grid simulation tools, such as power flows, security analyses (with or without remedial actions) and sensitivity analyses;
The framework is mostly written in Java, with a Python binding so that Python developers can access PowSyBl functionalities as well.
What you will learn during the webinar:
- For beginners: discover PowSyBl's functionalities through a quick general presentation and the notebook, without needing any expert coding skills;
- For advanced developers: master the skills to efficiently apply PowSyBl functionalities to your real-world scenarios.
Key Trends Shaping the Future of Infrastructure.pdfCheryl Hung
Keynote at DIGIT West Expo, Glasgow on 29 May 2024.
Cheryl Hung, ochery.com
Sr Director, Infrastructure Ecosystem, Arm.
The key trends across hardware, cloud and open-source; exploring how these areas are likely to mature and develop over the short and long-term, and then considering how organisations can position themselves to adapt and thrive.
Connector Corner: Automate dynamic content and events by pushing a buttonDianaGray10
Here is something new! In our next Connector Corner webinar, we will demonstrate how you can use a single workflow to:
Create a campaign using Mailchimp with merge tags/fields
Send an interactive Slack channel message (using buttons)
Have the message received by managers and peers along with a test email for review
But there’s more:
In a second workflow supporting the same use case, you’ll see:
Your campaign sent to target colleagues for approval
If the “Approve” button is clicked, a Jira/Zendesk ticket is created for the marketing design team
But—if the “Reject” button is pushed, colleagues will be alerted via Slack message
Join us to learn more about this new, human-in-the-loop capability, brought to you by Integration Service connectors.
And...
Speakers:
Akshay Agnihotri, Product Manager
Charlie Greenberg, Host
Software Delivery At the Speed of AI: Inflectra Invests In AI-Powered QualityInflectra
In this insightful webinar, Inflectra explores how artificial intelligence (AI) is transforming software development and testing. Discover how AI-powered tools are revolutionizing every stage of the software development lifecycle (SDLC), from design and prototyping to testing, deployment, and monitoring.
Learn about:
• The Future of Testing: How AI is shifting testing towards verification, analysis, and higher-level skills, while reducing repetitive tasks.
• Test Automation: How AI-powered test case generation, optimization, and self-healing tests are making testing more efficient and effective.
• Visual Testing: Explore the emerging capabilities of AI in visual testing and how it's set to revolutionize UI verification.
• Inflectra's AI Solutions: See demonstrations of Inflectra's cutting-edge AI tools like the ChatGPT plugin and Azure Open AI platform, designed to streamline your testing process.
Whether you're a developer, tester, or QA professional, this webinar will give you valuable insights into how AI is shaping the future of software delivery.
Knowledge engineering: from people to machines and back
Essential Layers of IBM i Security: File and Field Security
1. Layers of Security
File and Field Security
Patrick Townsend – Founder and CEO, Townsend Security
Bill Hammond – Sr, Product Marketing Manager
2. Housekeeping
Webinar Audio
• Today’s webinar audio is streamed through your computer
speakers
• If you need technical assistance with the web interface or audio,
please reach out to us using the Q&A box
Questions Welcome
• Submit your questions at any time during the presentation using
the Q&A box
Recording and slides
• This webinar is being recorded. You will receive an email following
the webinar with a link to the recording and slides
2
3. Today’s Agenda
• Layers of Security Overview
• IBM i File and Field Security
• Object-level authority management
• Row and Column Access Control (RCAC)
• File-access protection
• Encryption
• Tokenization of field data
• Anonymization
• Q & A
3
4. Townsend Security
ENCRYPTION KEY MANAGEMENT
4
Townsend Security creates data privacy solutions
that help organizations meet evolving compliance
requirements and mitigate the risk of data breaches
and cyber-attacks. The company’s solutions easily
integrate with Precisely’s Assure Security products.
Companies worldwide trust Townsend Security’s
NIST and FIPS 140-2 compliant solutions to meet
encryption and key management requirements in
PCI DSS, GDPR, CCPA, HIPAA/HITECH, FISMA,
and other regulatory compliance requirements.
Technology Partners Include
6. IBM i File and Field
Security
Protect personally
identifiable information
(PII), personal health
information (PHI), personal
credit card information,
and other
sensitive data from being
exposed should a breach
occur.
6
7. IBM i File and Field Security
1
Object-level authority
management
2
Row and Column
Access Control (RCAC)
3
File-access
protection
5
Encryption7
4 6
Tokenization of field data Anonymization
9. Object-level authority
management
9
• For any file (*FILE or *STMF) containing sensitive data, it is
critical that the authority designation is set to PUBLIC
(*EXCLUDE).
• Designated users can be given specific authority to:
• Access these files through private authority
• Group profiles can help with administration
• Access via application techniques that inherit additional authority
• Program adopted authority
• Profile swapping
11. Row and Column Access
Control (RCAC)
• Included with Db2 beginning with 7.2 of the IBM i OS, RCAC provides
the ability to prevent selected users from viewing specified rows in a
file and/or data in particular columns.
• For example, accounting staff should only be able to see rows in a file
where the Department field equals “Accounting,” or only select
managers should be able to see the Salary column within a file.
• Note that RCAC cannot be used for IFS stream files
• Compatible with FieldProc encryption – use both!
11
13. File-access protection
13
• Building upon object-level authority management, various
exit points can be used with rules-based exit programs to
further control access to files in very specific ways;
• A particular file may only be accessed or a particular
command may only be used during specific days or hours.
• Third-party solutions streamline the creation and
management of these kinds of exit programs
HINT: Remember to enable system logging and collect authority
failures.
15. Encryption
15
• By combining one or more publicly available algorithms with
a proprietary encryption key, human-readable data is
transformed into unreadable “ciphertext.”
• When the encrypted data needs to be decrypted for
permitted users, the same encryption key is used.
• Encryption requires the careful management of encryption
keys to ensure they don’t fall into the wrong hands.
CAUTION: Newer regulations like CCPA requirement proper key
management! Storing keys on the same server may expose you
to litigation (see California AB 1130 – Data Breach Notification)
16. Encryption
Data at Rest
• Precisely encryption solutions can encrypt
sensitive data on the IBM i—such as credit
card numbers—at the field level within
databases.
• Technologies are also available that encrypt
backup media and disk drives
Data in Motion
• Encrypt application data sent across networks.
• When entire files containing sensitive
information need to be sent between systems or
entities via FTP, they should always be
encrypted, both during transit and when transfer
files reside within send/receive staging areas.
• Secure file transfer processes are typically done
with third-party solutions as they provide strong
algorithms, sound encryption-key management
processes, and a variety of features that
streamline and automate file transfer processes.
16
18. Tokenization
18
• Replace sensitive data with non-sensitive substitute values
called tokens
• Third-party tokenization solutions
• utilize a database called a token vault
• stores both the sensitive data and information about the
relationship between it and its replacement token
• permanently replaces sensitive data with a substitute value
• Tokenization is often used to replace credit card numbers,
social security numbers, and other personally identifiable
information.
20. Anonymization
20
• Differences from Tokenization
• Eliminates use of a token vault
• Permanently replaces sensitive data with a substitute value
• Makes the original data unrecoverable
• Top use case for anonymization
• Production data needed for development
• Production data being used in a test environments.
21. Top Takeaways
• Know where your sensitive data is
• Know where your sensitive data goes
• Know who should have access to the
data
• Apply encryption and access controls
• Do periodic reviews! Data tends to leak
into unexpected places.
No one regretted protecting their sensitive
data AFTER they had a data breach.
21
23. Download the White Paper
The six layers of IBM i security and how
Precisely can help
23
https://www.precisely.com/resource-center/whitepapers/the-essential-
layers-of-ibm-i-security
24. Layers of Security Webinar Series
24
Topic 1 Topic 2 Topic 3
access on Resource Center
Topic 5 Topic 6Topic 4
register now!today
Patrick
I will speak to drivers for encryption including compliance regulations (CCPA, etc.), protection of IP and business secrets, etc.
Bill
The increased frequency of high-profile breaches and the corresponding rise of new and expanded regulatory compliance requirements is putting enormous pressure on IT departments to assure their corporate executives that business-critical systems and data are secure. One particular statistic from a recently conducted Precisely survey of IT professionals is revealing in that 69% of respondents said they were only “somewhat confident” (or worse) in the effectiveness of their company’s IT security program. Given today’s rapidly evolving security threats, even being “somewhat confident” doesn’t cut it.
Improving confidence in one’s IT security posture requires a solid understanding of all potential vulnerabilities as well as the most effective best practices and technologies in order to minimize the possibility of a breach. To help, Precisely has created this white paper as a roadmap, grouping together important security best practices and technologies into six primary categories or “layers.” These layers cover physical devices, networks, configuration of the IBM i OS, access to systems, protection of data at the file and field level, and monitoring and auditing of systems. The reason it’s particularly helpful to view these security categories as “layers” is that, to some extent, each category overlaps with the others to provide multiple lines of defense. In other words, should one security layer be somehow compromised, there’s a good chance that another layer will thwart a would-be intruder. The six layers of IBM i security are summarized in the following diagram and are detailed in the remainder of this white paper
Bill
Numerous regulations require companies in various industries to protect personally identifiable information (PII), personal health information (PHI), personal credit card information, and other sensitive data from being exposed should a breach occur. The following strategies and technologies are key to protecting files and data on the IBM i:
Bill
Bill
Patrick
Note: Added the bullet point about group profiles
Bill
Patrick
In instances where users need to access IBM i environments containing especially sensitive data, third-party technologies can be implemented that require two or more identifying factors from users before access is granted. Most people are implementing MFA today. Some regulations require MFA per system not just once when sign into the network. Everyday examples.
This is a way to take a step further to resource access. In addition to being used to control access to systems, multi-factor authentication solutions can typically be implemented via API calls to control access to specific databases, individual files, or even commands..
Bill: I added the note about RCAC is compatible with encryption. That was always confusing to IBM I customers.
Bill
Patrick
I added the last bullet point about system logging. Good tie in to Precisely monitoring solutions.
Bill
Patrick
I added the last note about proper key management.
Patrick
I think I would change “Third-party encryption solutions” to “Precisely encryption solutions”. I don’t think that is too salesy, but of course up to you.
I will talk about the Precisely managed FTP solution, too.
Bill
Patick
I just added the bit “or when sending to outside service providers”.
BH
Patrick
Patrick
Bill: Just some suggestions as we wrap up the conversation. Thoughts?
Bill
The increased frequency of high-profile breaches and the corresponding rise of new and expanded regulatory compliance requirements is putting enormous pressure on IT departments to assure their corporate executives that business-critical systems and data are secure. One particular statistic from a recently conducted Precisely survey of IT professionals is revealing in that 69% of respondents said they were only “somewhat confident” (or worse) in the effectiveness of their company’s IT security program. Given today’s rapidly evolving security threats, even being “somewhat confident” doesn’t cut it.
Improving confidence in one’s IT security posture requires a solid understanding of all potential vulnerabilities as well as the most effective best practices and technologies in order to minimize the possibility of a breach. To help, Precisely has created this white paper as a roadmap, grouping together important security best practices and technologies into six primary categories or “layers.” These layers cover physical devices, networks, configuration of the IBM i OS, access to systems, protection of data at the file and field level, and monitoring and auditing of systems. The reason it’s particularly helpful to view these security categories as “layers” is that, to some extent, each category overlaps with the others to provide multiple lines of defense. In other words, should one security layer be somehow compromised, there’s a good chance that another layer will thwart a would-be intruder. The six layers of IBM i security are summarized in the following diagram and are detailed in the remainder of this white paper