File Integrity Monitoring (FIM) solutions have protected other platforms for years. FIM is finally starting to catch on within the mainframe community, driven by most compliance agencies (PCI DSS, NIST, HIPAA, GDPR, …) requiring that mainframes have a FIM solution in place.
For PCI DSS Requirement 11.5, you must continuously perform file integrity checks on every platform, including the mainframe; FIM+ diligently passes this standard.
This requirement is a positive change and isn’t a trivial compliance step. And there is a big difference between FIM and event logging (SIEM); simply logging events doesn’t satisfy z/OS FIM compliance requirements.
Beyond compliance, an automated mainframe FIM tool will provide advanced threat protection with early detection of any potential malicious threat. When done the right way, FIM fills security gaps on z/OS and other platforms.
FIM+ for z/OS performs both automatic and on-demand Quick Scans (extremely low CPU usage), identifies threats in real-time, and is the only real z/OS FIM solution available. FIM+ does NOT require a SIEM or a z/OS SIEM Agent (e.g., VSA) to comply or send alerts (although combining FIM+ with SIEM will multiply security benefits).
Advanced threat protection via continuous, integrity monitoring scans of z/OS system files. Meet compliance standards, add automation, enhance z/OS security with FIM+.