If you’re running FTP on z/OS in 2025, you are facing a growing security and compliance problem. We know, FTP has been a reliable tool for decades. It’s simple, it works, and everyone knows how to use it. But that convenience comes with serious risks that can no longer be ignored.
The FTP Security Problem
FTP transmits everything in plaing text, passwords, usernames, and your data. Anyone with network access can see it all. No encryption. No data integrity checks. No security.
For z/OS shops handling regulated data, this creates immediate compliance issues:
- PCI DSS requires encryption for cardholder data
- HIPAA mandates protection for health information in transit
- SOX demands data integrity controls
Recent research shows 83% of organizations reported insider threats in 2024. Even your internal network is not as safe as you think.
Why Migration Seems So Hard
We’ve talked to hundreds of z/OS teams, and we hear the same concerns:
“FTP is embedded in thousands of our batch jobs.”
“We don’t even know where all our FTP transfers are.”
“Rewriting all that JCL would take years.”
“We can’t afford to disrupt our batch windows.”
These are legitimate concerns. Traditional migration approaches are disruptive, time-consuming, and risky.
There’s a Better Way
Modern migration technology has changed the game. Using a SOCKS proxy architecture on z/OS, you can:
- Migrate without rewriting JCL – Transparent FTP-to-SFTP conversion means batch jobs continue using FTP syntax while actual transmissions are encrypted
- Move at your own pace – Migrate specific jobs, users, or partners incrementally rather than all-or-nothing cutover
- Leverage existing OpenSSH – Use the encryption software already included with z/OS
- Gain complete visibility – Know exactly what FTP transfers are running before you start
Our customers report 60-70% faster migration timelines compared to traditional JCL rewrite approaches.
Get the Full Technical Details
We’ve created a comprehensive whitepaper that covers:
✓ Complete breakdown of FTP security vulnerabilities
✓ Compliance requirements by regulation (PCI, HIPAA, SOX)
✓ Step-by-step migration methodology
✓ Best practices from successful migrations
✓ How VFTP and VST make migration easier
Download the whitepaper: “Securing z/OS File Transfers – Migrating from FTP to SFTP”
Ready to Start Your Migration?
Don’t wait for an audit finding or security incident to force your hand. The technology exists today to make FTP migration manageable and non-disruptive.
Request a consultation with our z/OS security specialists to discuss your specific environment and migration timeline.
Every day you delay increases your exposure. Start securing your file transfers today.
Founded in 1982, Software Diversified Services delivers comprehensive, affordable mainframe and distributed software with a focus on cybersecurity and compliance. Hundreds of organizations worldwide, including many Fortune 500 companies, rely on SDS software. Our expert development and award-winning technical support teams are based in Minneapolis, MN. To learn more, please visit sdsusadev.wpenginepowered.com.
Free Demo/Trial
We offer individualized product demonstrations by request. Your organization can also try SDS Software on your system for 30 days, free of charge.
Latest Posts
Is Your z/OS Environment Still Using FTP? It’s Time for a Security UpgradeDecember 11, 2025 - 9:54 am
Is Your Mainframe Audit-Ready? (Most Organizations Would Fail This Test)November 1, 2025 - 8:07 am
Mainframe Security Best Practices for Cybersecurity Awareness MonthOctober 1, 2025 - 7:30 am
Quarterly SDS Virtel NewsletterSeptember 24, 2025 - 12:05 pm
Contact SDS
Phone: (800) 443-6183
Phone: (763) 571-9000
200 Village Center Drive, Suite 250
North Oaks, MN 55127
USA