VitalSigns SIEM Agent^™ for z/OS | VSA

Integrate mainframe security events into your existing SIEM solution.

Easily Add z/OS Events to any SIEM

Although mainframes produce plenty of information about what’s happening (event log, audit log, syslog, etc.), you need a way to quickly and easily separate critical security incidents from business-as-usual events – and send them in the right format to your enterprise SIEM.

VitalSigns SIEM Agent for z/OS (VSA, formerly SMA_RT) forwards these mainframe log messages in the proper format, as well as those from RACF, ACF2, Top Secret, DB2, CICS, and FTP, to Security Information and Event Management (SIEM) systems such as Splunk^®, LogRhythm NextGen SIEM, IBM^® QRadar^®, AlienVault, ArcSight, and others. Mainframe teams must comply with strict audit policies but may not have the time or the resources to filter and format the right data and send it to the enterprise SIEM. Let VSA help.

VSA brings your z/OS mainframes into the center of your enterprise security infrastructure without hassle and in real time.

Request Demo/Trial

Want more videos? View our collection of SIEM videos and our previous VSA webinars.

Compliance

VSA is an invaluable tool to help your business comply with FISMA, GDPR, GLBA, HIPAA, PCI, SOX, and other standards. Administrators can define specific parameters to monitor with more detail and at greater depth, and automatically send data to any enterprise SIEM.

Security

With VSA monitoring the mainframes, your security team has a central, enterprise-wide view of all the events they need to capture and all the security threats they need to recognize.

Transparency

Mainframe security no longer needs to depend on batch jobs running long after any incident. Events are tracked and uncovered in real time, from all corners of the business.

This z/OS SIEM solution is flexible enough to integrate with any distributed SIEM product and is certified for CEF and LEEF formats. VSA is a Ready for IBM Security Intelligence product. In addition, VSA integrates well and provides mainframe data to these SIEM solutions: Splunk, LogRhythm NextGen SIEM, AlienVault, ArcSight, McAfee^® Enterprise Security Manager, and others.

Features

Delivers mainframe data to all conventional SIEM products
Certified for CEF and LEEF formats
Connects with standard z/OS security products
Monitors z/OS and UNIX System Services (USS)
Gathers intelligence from z/OS SMF and the system operator interface
Uses both signature- and anomaly-based attack detection
Provides real-time alerts that can be managed, filtered, routed, and searched via SIEM software
APIs allow for defining and filtering TSO, CICS, and batch events
Easy installation does not require z/OS IPLs
A small footprint in each LPAR, with little CPU overhead

Request Info

These days, every company stands the chance of being hacked – and you don’t want to be the next headline. VSA gives you central, end-to-end systems visibility to help you stay in control of data security. Because the truth is, your business is about to be compromised… or it already has been.

VSA is a Ready for IBM Security Intelligence solution

Want even more z/OS security with compliance help?

Consider this Mainframe Security Solution

FIM+ for z/OS

The first real mainframe FIM (File Integrity Monitoring) solution, FIM+ performs automatic, continuous scans of your entire mainframe efficiently and securely. Because it costs so little CPU time (< 1 CPU second) to scan your system for any change or anything unexpected, you can run scans as often as you like.
It works well by itself, but when FIM+ is combined with a z/OS event monitoring tool like VSA, you can continuously log all events and monitor all data to better distinguish security threats from all the clutter and false positives. Imagine cutting out 90% of your false alarms while having all the information at your disposal for faster incident response!

The major benefits of FIM+ have potential to become even more powerful when leveraged alongside a mainframe SIEM solution like VSA.

Product Webinar

Add Real-Time, Critical Mainframe Events to your SIEM

Watch our latest VitalSigns SIEM Agent for z/OS webinar, which focuses on its ability to automatically deliver real-time, filtered z/OS event records to any distributed SIEM tool.

Watch Now

SDS Security Software

Check out the latest SDS mainframe security software solutions. Our most popular mainframe security products in 2019 offer:

SDS Mainframe Security

Free Demo/Trial

We offer individualized product demonstrations by request. Your organization can also try SDS Software on your system for 30 days, free of charge.

Request a Free Demo or Trial

Cookie and Privacy Settings

How we use cookies

We may request cookies to be set on your device. We use cookies to let us know when you visit our websites, how you interact with us, to enrich your user experience, and to customize your relationship with our website.

Click on the different category headings to find out more. You can also change some of your preferences. Note that blocking some types of cookies may impact your experience on our websites and the services we are able to offer.

Essential Website Cookies

Google Analytics Cookies

These cookies collect information that is used either in aggregate form to help us understand how our website is being used or how effective our marketing campaigns are, or to help us customize our website and application for you in order to enhance your experience.

If you do not want that we track your visist to our site you can disable tracking in your browser here:

Click to enable/disable google analytics tracking.

Other external services

We also use different external services like Google Webfonts, Google Maps and external Video providers. Since these providers may collect personal data like your IP address we allow you to block them here. Please be aware that this might heavily reduce the functionality and appearance of our site. Changes will take effect once you reload the page.

Google Webfont Settings:

Click to enable/disable google webfonts.

Google Map Settings:

Click to enable/disable google maps.

Vimeo and Youtube video embeds:

Click to enable/disable video embeds.

Breach Response Webinar May 23

VitalSigns SIEM Agent^™ for z/OS | VSA

Integrate mainframe security events into your existing SIEM solution.

Easily Add z/OS Events to any SIEM

Compliance

Security

Transparency

Features

Datasheet

White Paper

Resources

Request Info

Want even more z/OS security with compliance help?

Consider this Mainframe Security Solution

FIM+ for z/OS

Product Webinar

Add Real-Time, Critical Mainframe Events to your SIEM

More Solutions

SDS Security Software

Free Demo/Trial

Quick Links

Our Solutions

Latest Posts

Contact SDS

VitalSigns SIEM Agent™ for z/OS | VSA

Integrate mainframe security events into your existing SIEM solution.

Easily Add z/OS Events to any SIEM

Compliance

Security

Transparency

Features

Datasheet

White Paper

Resources

Request Info

Want even more z/OS security with compliance help?

Consider this Mainframe Security Solution

FIM+ for z/OS

Product Webinar

Add Real-Time, Critical Mainframe Events to your SIEM

More Solutions

SDS Security Software

Free Demo/Trial

Quick Links

Our Solutions

Latest Posts

Contact SDS

Cookie and Privacy Settings

VitalSigns SIEM Agent^™ for z/OS | VSA