Resources

Compliance Mandates Apply to IBM i Too

By Amy Williams on Tue, 02/20/2024

The most overlooked aspects of IBM i compliance with PCI-DSS, SOX, HIPAA, and other standards, how to configure them correctly, and what Fortra can do to help.

Article

I’ve Got *ALLOBJ Authority And I’m Not Afraid To Use It—Part 2

By Robin Tatam on Thu, 06/27/2019

While everyone likes to feel special, we need to be more selective when it comes to data access. As we discussed last month, many users have privileges far beyond their business requirements and simply need to have their access reduced to more reasonable levels.

Article

Audit Tested & Audit Approved Instant Authority!

By Robin Tatam on Fri, 03/24/2017

Introduced by IBM to support TCP/IP services, a profile swap allows a job to change midstream and run under a different profile than the one that started it.

Blog

How “Smash and Grab” Compromises IBM i

By Robin Tatam on Wed, 03/08/2017

During an audit a few years ago, I revealed to the client’s security team that corporate payroll information on every employee, including the CEO, was being archived in an output queue (called PAYROLL) for weeks at a time. Due to poor configuration, this information was accessible to every employee.

Article

The Modern Alternative to Authority Adoption

By Robin Tatam on Wed, 03/08/2017

There are several considerations with authority adoption. Each is important but can usually be accommodated. But what is the effect if the program owner has the same or less privileges than the user that called the program?

Blog

What Is a Profile Swap and How Can It Help Secure IBM i?

By Robin Tatam on Thu, 02/09/2017

In this short video, IBM i security expert Robin Tatam explains what a profile swap is and how it helps secure your system.

Blog

IT Security Compliance 101

By Robin Tatam on Sun, 08/21/2016

In this compliance 101 primer, we'll look at three high-profile breaches from the past year, each of which shows what can go wrong when data oversight isn't up to snuff. Along the way, we'll discuss some basic fixes that can help shore up network defenses.

Compliance Mandates Apply to IBM i Too

I’ve Got *ALLOBJ Authority And I’m Not Afraid To Use It—Part 2

Audit Tested & Audit Approved Instant Authority!

How “Smash and Grab” Compromises IBM i

The Modern Alternative to Authority Adoption

What Is a Profile Swap and How Can It Help Secure IBM i?

IT Security Compliance 101

Contact Information

Privacy Policy

Cookie Policy

Impressum