Resources
Press Release

Weak Internal Security Causes Weak External Security

Long-time security expert, Pat Botz, recently joined Fortra. Botz goes way back in the computer industry. He wrote the Basic compiler and CAD tools for Control Data supercomputers and then lead the development of CAD tools for its AIX workstation line three decades ago. He eventually became a lead security architect for the IBM i platform, and left Big Blue a number of years ago to start his own security firm, Botz & Associates. Dan sat down to have a chat with Chris Heim, chief executive officer of Fortra, and John Vanderwall, vice president and business unit manager for security services at the company, as well as Botz, who now has a senior security services consultant position at the company.
Blog

How Spectre and Meltdown Affect Power Systems Servers

Thu, 02/08/2018
The Spectre and Meltdown vulnerabilities do affect Power Systems servers. Fortra security expert explains what we know so far and how you can stay up-to-date on patches released by IBM.
Infrastructure and Data Protection
Getting started with NIST 800-171 compliance
Blog

NIST’s Surprising New Password Recommendation

By Robin Tatam on Fri, 01/05/2018
For a computer user, few things are more annoying than the requirement to use a password to access servers, applications, and websites. Find out how NIST's new recommendations are making passwords easier to create and maintain.
Infrastructure and Data Protection
Blog

Hidden Dangers of the Lesser-Known IBM i Special Authorities

Fri, 01/05/2018
Everyone’s aware of the dangers of *ALLOBJ, *SECADM, and *SPLCTL special authorities. But what about the rest? Fortra security expert explains the issues you should be aware of when assigning the other special authorities.
Infrastructure and Data Protection
Blog

How to Get Started with NIST 800-171 Compliance

By Kevin Jackson on Fri, 09/22/2017
Are you ready to report your NIST 800-171 compliance status by the end of the year? If you do business with the federal government, you need to comply with SP NIST 800-171 by the end of the year. Now is the time to implement your compliance plan.
Automation
Infrastructure and Data Protection
Compliance
Monitoring
Blog

eBay Breach Highlights the Value of Monitoring Security-Related Events

By Robin Tatam on Fri, 03/24/2017
The importance of monitoring your computer system and personal information simply cannot be overstated. In today's online environment, hackers hungry for users' account information and other sensitive details seem to be lurking around every corner. To keep these attackers at bay, companies must always have an eye on system and account activity, and be able to react quickly should anything...
Infrastructure and Data Protection
Blog

Cracking the Problem of Endpoint Security

By Robin Tatam on Fri, 03/24/2017
Endpoint security has been a hot topic in the technology and corporate sectors for a few years. Especially with the emergence of bring-your-own-device practices, it has become even more critical to put safeguards in place to ensure the security of sensitive information.
Infrastructure and Data Protection
Blog

Single Sign-On and the Dangers of Active Directory

By Robin Tatam on Fri, 03/24/2017
Active Directory is a staple of enterprise IT and it nominally ensures secure, authenticated access to a company's core business applications. It can become problematic if it isn't properly monitored and supported by up-to-date security software, modern hardware, and access controls. Accordingly, system administrators face many potential risks when working with Active Directory.
Infrastructure and Data Protection
Banks depend on AS/400 for security
Blog

IBM i: The Backbone of the Banking Industry

Tue, 03/21/2017
Highly regulated organizations such as those in the banking industry have a strong history with IBM i, and for good reason—the platform offers an unprecedented level of security.
Infrastructure and Data Protection