SDS IronSphere for z/OS is a continuous monitoring solution that can strengthen your hardened mainframe system while complying with the standards that U.S. government agencies are required to follow.
This z/OS solution was built with the goal of facilitating compliance for the mainframe. SDS IronSphere for z/OS follows the DoD-required, NIST ISCM (Information Security Continuous Monitoring) standard and helps adhere to RMF (Risk Management Framework) protocol, something all U.S. Federal Government Agencies must follow. It also can assist with GDPR and FISMA compliance requirements.
System diagnostics that IronSphere uses to identify vulnerabilities that need to be fixed are based on DISA (Defense Information Systems Agency) STIGs (Security Technical Implementation Guides). Additional fix guides have been created by experts with extensive mainframe penetration testing history. Many z/OS system components lacking DISA STIGs have already had STIGs created by IronSphere and are available to users. If you need another STIG, simply request it and the fix will be in your inbox ASAP. Also, you can configure your own STIGs based on your system’s components, data, users, libraries, etc.
This solution automatically and continuously identifies system risks, then delivers fix instructions as part of the assessment results. In addition, results are kept within tool, proving to compliance auditors that your z/OS system is monitoring continuously and adhering to ISCM and RMF protocols.
This mainframe solution offers a new level of system visibility by displaying z/OS scan results and system vulnerabilities in a GUI with a “40,000 foot view” of system information and scan results for specialized experts within the Security and GRC Teams, Upper-Level Managers, and the z/OS Mainframe Team. The display also contains more details to satisfy and guide z/OS team members charged with implementing the fixes detailed in the guides.
Enhance your auditing, compliance, security, usability, and visibility, on z/OS.