File Integrity Monitoring (FIM) solutions from Tripwire, Trustwave, and Qualys have protected Windows and Unix platforms for years. Now, FIM+ software brings this new level of integrity to the mainframe. FIM+ is the only z/OS product to provide true, real-time detection of suspicious file changes and absolute proof that all components match approved levels. Finally, you can meet all your security responsibilities and comply with PCI DSS, NIST, HIPAA, GDPR, and other requirements.
An example: for PCI DSS Requirement 11.5, you must continuously perform file integrity checks on every platform, including the mainframe. FIM+ diligently passes this standard.
This requirement is a positive change and isn’t a trivial compliance step. And there is a big difference between FIM and event logging (SIEM); simply logging events doesn’t satisfy z/OS FIM compliance requirements.
Beyond compliance, an automated mainframe FIM tool will provide advanced threat protection with early detection of any potential malicious threat. When implemented, FIM+ will fill security and awareness gaps on z/OS.
FIM+ for z/OS performs both automatic and on-demand Quick Scans (extremely low CPU usage), identifies threats in real-time, and is the only real z/OS FIM solution available. FIM+ does NOT require a SIEM or a z/OS SIEM Agent (e.g., VSA) to comply or send alerts (although adding FIM+ results to your SIEM is best for enterprise security).
Advanced threat protection via real-time, continuous scans of z/OS system files. Enhance z/OS security through Audits for Correctness.