Resources

On-Demand Webinar

Controlling Insider Threats on IBM i

By Robin Tatam

Despite the avalanche of regulations, news headlines remain chock full of stories about data breaches, all initiated by insiders or intruders masquerading as insiders.

On-Demand Webinar

Reduce the Cost and Effort of IBM i Auditing

By Robin Tatam

IBM i puts the ability to audit at your disposal, but how do you convert the raw data into useful information?

On-Demand Webinar

Simple Strategies for In-Depth Malware Defense

By Sandi Moore

In today's world of advanced malware, zero-day attacks, and stealthy threats, simply having visibility into the malware affecting your organization is not enough. If you want to protect your business from the costs, risks, and brand damage these threats can cause, you need to consider a more comprehensive approach to complete malware defense.

Blog

How to Apply IDS/IPS to IBM i

By Robin Tatam on Fri, 05/12/2017

IPS/IDS are common cybersecurity terms, but how does that pertain to the IBM i environment?

Guide

Download "Secure Inside and Out: Maximizing Intrusion Detection and Prevention on IBM i"

Data leaks and operational disruptions can come from any source—internal or external. To protect sensitive data from modern cyberthreats, all organizations need a robust intrusion detection and prevention system (IDS/IPS). The IBM i operating system includes advanced capabilities for detecting and preventing external threats, but there are still gaps that must be filled. ...

Article

Generate and Distribute Audit Reports Automatically

By Robin Tatam on Mon, 04/03/2017

Despite the server’s incredible security infrastructure, auditing remains primarily a thankless, manual chore. And, let’s face it, any task that’s thankless and manual probably won’t get done.

Article

Protect the IBM i Command Line with Powertech Command Security for IBM i

By Robin Tatam on Fri, 03/24/2017

A user’s ability to execute commands in a green-screen environment is controlled by the limit capabilities (LMTCPB) parameter on their profile. Although without exit programs to extend IBM i security functions, even limited capability users could invoke commands through network interfaces such as FTP.

Article

Audit Tested & Audit Approved Instant Authority!

By Robin Tatam on Fri, 03/24/2017

Introduced by IBM to support TCP/IP services, a profile swap allows a job to change midstream and run under a different profile than the one that started it.

Article

Command Access Can Bring Unexpected Consequences

By Robin Tatam on Fri, 03/24/2017

Does this sound familiar? You recently experienced an “unplanned outage” after an administrator inadvertently issued a PWRDWNSYS command while mentoring a new operator.

Article

How To Maintain Your Data Integrity

By Robin Tatam on Tue, 03/21/2017

File Integrity Monitoring (FIM) helps ensure that your critical and sensitive data is viewed and changed only by authorized personnel through approved channels. Candidates for FIM include application files containing sensitive data, such as personnel or financial data, and server configuration files.

Blog

How “Smash and Grab” Compromises IBM i

By Robin Tatam on Wed, 03/08/2017

During an audit a few years ago, I revealed to the client’s security team that corporate payroll information on every employee, including the CEO, was being archived in an output queue (called PAYROLL) for weeks at a time. Due to poor configuration, this information was accessible to every employee.

Blog

PCI Compliance Takeaways from the Target Data Breach

By Robin Tatam on Wed, 03/08/2017

Smack in the middle of the holiday shopping season, Target was hit with a malware attack that infiltrated its point-of-sale systems and enabled the theft of credit card numbers and personally identifiable information from more than 70 million shoppers.

Article

The Modern Alternative to Authority Adoption

By Robin Tatam on Wed, 03/08/2017

There are several considerations with authority adoption. Each is important but can usually be accommodated. But what is the effect if the program owner has the same or less privileges than the user that called the program?

On-Demand Webinar

An Introduction to PCI Compliance on IBM Power Systems

By Robin Tatam

Complying with the PCI standard is a normal part of doing business in today’s credit-centric world. But, PCI applies to multiple platforms. The challenge becomes how to map the general PCI requirements to a specific platform, such as IBM i. And, more importantly, how can you maintain—and prove—compliance?

On-Demand Webinar

Audit and Control of Powerful Users on IBM i

By Robin Tatam

Discover the ways to control and audit the activity of powerful users, with a view to enhancing the integrity of your IBM i. With the proper controls in place, you can restrict even the most powerful users as required.

Guide

Download “Identity & Access Management for IBM i”

Insiders are responsible for 34 percent of data breaches—and insiders are also the most difficult threat to control control on IBM i. You can't lock them out completely because your IBM i users need at least some level of access to do their jobs. So, how do you ensure users have only the access they need without overburdening IT with manual...

Blog

What Is a Profile Swap and How Can It Help Secure IBM i?

By Robin Tatam on Thu, 02/09/2017

In this short video, IBM i security expert Robin Tatam explains what a profile swap is and how it helps secure your system.

On-Demand Webinar

44 Percent of Your IBM i Users Can Do WHAT?!

By Robin Tatam

Your IBM i power users are one of your greatest assets. But on most systems, they're also one of your greatest security vulnerabilities. Find out how to regain control.

Guide

Anti Malware for Linux, AIX, and IBM i Servers

When Malware Attacks Your IBM i, AIX, and Linux Servers Guide Malware and ransomware attacks have increased, halting day-to-day operations and bringing organizations to their knees. Businesses know anti malware is essential to protecting PCs from malicious programs, but many don’t realize the value of server-level protection until the damage is done. This guide examines the...

Blog

IT Security Compliance 101

By Robin Tatam on Sun, 08/21/2016

In this compliance 101 primer, we'll look at three high-profile breaches from the past year, each of which shows what can go wrong when data oversight isn't up to snuff. Along the way, we'll discuss some basic fixes that can help shore up network defenses.

Controlling Insider Threats on IBM i

Reduce the Cost and Effort of IBM i Auditing

Simple Strategies for In-Depth Malware Defense

How to Apply IDS/IPS to IBM i

Download "Secure Inside and Out: Maximizing Intrusion Detection and Prevention on IBM i"

Generate and Distribute Audit Reports Automatically

Protect the IBM i Command Line with Powertech Command Security for IBM i

Audit Tested & Audit Approved Instant Authority!

Command Access Can Bring Unexpected Consequences

How To Maintain Your Data Integrity

How “Smash and Grab” Compromises IBM i

PCI Compliance Takeaways from the Target Data Breach

The Modern Alternative to Authority Adoption

An Introduction to PCI Compliance on IBM Power Systems

Audit and Control of Powerful Users on IBM i

Download “Identity & Access Management for IBM i”

What Is a Profile Swap and How Can It Help Secure IBM i?

44 Percent of Your IBM i Users Can Do WHAT?!

Anti Malware for Linux, AIX, and IBM i Servers

IT Security Compliance 101

Contact Information

Privacy Policy

Cookie Policy

Impressum