Customer's have always seen security and availability as key strengths of the IBM z/OS Mainframe platform, and that's exactly why it's often used by large organisations to power mission-critical parts of their IT infrastructure. But given endless security threats and cyber-attacks from inside and outside the organisation, as well as escalating regulatory requirements it doesn't pay to be complacent - even fortresses can be vulnerable if repeatedly attacked and mainframes are not impregnable.
Medical Mutual, a large US-based health insurance provider had been using Splunk Enterprise to monitor unauthorized access on their distributed systems for some time, but also wanted to protect sensitive customer information stored in DB2 on the mainframe from unauthorized access. By deploying Syncsort Ironstream to convert and forward mainframe security data to Splunk in real time, Medical Mutual are now able to take advantage of Splunk's correlation capabilities to track security events across multiple platforms including mainframe, Windows and distributed servers.
“Now by adding mainframe data provided by Ironstream into Splunk Enterprise, we finally have a real-time, 360-degree view that enables us to correlate all of our security data from across the enterprise and gain visibility into user-authentication data and access attempts tracked on the mainframe.” – Craig Fox, Security Specialist, Medical Mutual of Ohio
Read more about the Medical Mutual experience.
Help identify and manage risk in your organisation with this timely new eBook from Syncsort — Security, Compliance and the Mainframe. Covering areas like access policies for sensitive data, compliance reporting and "insider" security breaches, it also makes recommendations on how organizations can improve their risk profiles regarding both security and compliance.