Resources | Fortra

Resources

Getting started with NIST 800-171 compliance

Blog

Blog

NIST’s Surprising New Password Recommendation

By Robin Tatam on Fri, 01/05/2018

For a computer user, few things are more annoying than the requirement to use a password to access servers, applications, and websites. Find out how NIST's new recommendations are making passwords easier to create and maintain.

Blog

Hidden Dangers of the Lesser-Known IBM i Special Authorities

Fri, 01/05/2018

Everyone’s aware of the dangers of *ALLOBJ, *SECADM, and *SPLCTL special authorities. But what about the rest? Fortra security expert explains the issues you should be aware of when assigning the other special authorities.

Blog

Blog

Could IBM i Have Been Part of the Equifax Breach?

Tue, 11/28/2017

If IBM i was part of the Equifax data breach, what could that organization have done to protect their data? Fortra security expert has some ideas.

Blog

Blog

Faster and Easier IBM i Password Resets

By Robin Tatam on Wed, 11/08/2017

Security expert Robin Tatam explains an easy way to spend less time and resources on resetting IBM i passwords.

Blog

How to Automate Security Policy Enforcement

By Robin Tatam on Wed, 10/18/2017

In this quick video, security expert Robin Tatam explains how automating your security policy management is an easy way to keep tabs on your security configuration.

Blog

How to Get Started with NIST 800-171 Compliance

By Kevin Jackson on Fri, 09/22/2017

Are you ready to report your NIST 800-171 compliance status by the end of the year? If you do business with the federal government, you need to comply with SP NIST 800-171 by the end of the year. Now is the time to implement your compliance plan.

Blog

Blog

Using Field Procedures for IBM i Encryption

By Robin Tatam on Fri, 09/15/2017

Robin Tatam has fielded quite a few questions about how to encrypt IBM i data. In this quick video, he outlines your options and explains field procedures (FieldProcs).

Article

Article

Generate and Distribute Audit Reports Automatically

By Robin Tatam on Mon, 04/03/2017

Despite the server’s incredible security infrastructure, auditing remains primarily a thankless, manual chore. And, let’s face it, any task that’s thankless and manual probably won’t get done.

Blog

How Exit Programs Make the Greatest Impact on IBM i Security

By Robin Tatam on Tue, 03/28/2017

What do exit points have to do with cybersecurity? How do exit programs work? Robin Tatam provides a clear explanation in this video.

Blog

Blog

eBay Breach Highlights the Value of Monitoring Security-Related Events

By Robin Tatam on Fri, 03/24/2017

The importance of monitoring your computer system and personal information simply cannot be overstated. In today's online environment, hackers hungry for users' account information and other sensitive details seem to be lurking around every corner. To keep these attackers at bay, companies must always have an eye on system and account activity, and be able to react quickly should anything...

Blog

Blog

Cracking the Problem of Endpoint Security

By Robin Tatam on Fri, 03/24/2017

Endpoint security has been a hot topic in the technology and corporate sectors for a few years. Especially with the emergence of bring-your-own-device practices, it has become even more critical to put safeguards in place to ensure the security of sensitive information.

Blog

Blog

Single Sign-On and the Dangers of Active Directory

By Robin Tatam on Fri, 03/24/2017

Active Directory is a staple of enterprise IT and it nominally ensures secure, authenticated access to a company's core business applications. It can become problematic if it isn't properly monitored and supported by up-to-date security software, modern hardware, and access controls. Accordingly, system administrators face many potential risks when working with Active Directory.

Article

Article

Audit Tested & Audit Approved Instant Authority!

By Robin Tatam on Fri, 03/24/2017

Introduced by IBM to support TCP/IP services, a profile swap allows a job to change midstream and run under a different profile than the one that started it.

Article

Article

Command Access Can Bring Unexpected Consequences

By Robin Tatam on Fri, 03/24/2017

Does this sound familiar? You recently experienced an “unplanned outage” after an administrator inadvertently issued a PWRDWNSYS command while mentoring a new operator.

Article

Identifying Security Threats with Network Monitoring Software

By Kevin Jackson on Thu, 03/23/2017

Now more than ever, securing your infrastructure is critical to the success of your organization.

Data Integrity Monitoring graphic

Article

Article

How To Maintain Your Data Integrity

By Robin Tatam on Tue, 03/21/2017

File Integrity Monitoring (FIM) helps ensure that your critical and sensitive data is viewed and changed only by authorized personnel through approved channels. Candidates for FIM include application files containing sensitive data, such as personnel or financial data, and server configuration files.

Banks depend on AS/400 for security

Blog

Blog

IBM i: The Backbone of the Banking Industry

Tue, 03/21/2017

Highly regulated organizations such as those in the banking industry have a strong history with IBM i, and for good reason—the platform offers an unprecedented level of security.

Blog

Blog

2 Ways Encryption Protects You Even After a Data Breach

Fri, 03/17/2017

The growing threats to data highlight the need for multiple layers of defense. Encryption is a critical layer that protects your organization from some of the most devastating consequences of a data breach.

Article

Article

New Approaches to the SWIFT and PCI-DSS Framework

Mon, 03/13/2017

THE WORLD OF COMPLIANCE At the official start of summertime 2016 in Britain we are starting to consume the labour of last autumn, five gallons of alcoholic homemade cider (yum!) made from eight apple varieties grown in mine and my neighbors’ gardens. I’m very VERY careful sterilizing glassware, containers, and buckets: there was this unfortunate incident three years ago (no, you don’t want to hear...

Case Study

Case Study

Policy Minder Helps Amway Remove the Guesswork from PCI Security Compliance

System and data security—along with PCI compliance—are top concerns for Amway. They turned to Policy Minder for help automating security administration.