Resources

Download "IBM i Security and Integrity Monitoring Handbook"

Data breaches increase in number and severity every year. Putting barriers in place to stop attackers is an important part of any data protection plan, but barriers alone aren’t enough . Today’s top IT profressionals know that verifying the effectiveness of cybersecurity controls is critical. After all, most breaches go months before they’re discovered. Monitoring your security and regularly...

Blog

How to Get Started with NIST 800-171 Compliance

By Kevin Jackson on Fri, 09/22/2017

Are you ready to report your NIST 800-171 compliance status by the end of the year? If you do business with the federal government, you need to comply with SP NIST 800-171 by the end of the year. Now is the time to implement your compliance plan.

Guide

NIST 800-171 Cybersecurity Regulation: How It Affects IT Professionals Everywhere

This guide features an easy-to-follow explanation of NIST 800-171's purpose and requirements. You’ll also get a checklist to help you evaluate your current security measures and where you need to focus your compliance efforts.

On-Demand Webinar

Expert Tips for Avoiding AIX Security Mistakes

By Bob Erdman

Servers running AIX and other operating systems are frequent targets of cyberattacks, according to the Data Breach Investigations Report. From DDoS to malware, attackers have many strategies at their disposal—and common cybersecurity mistakes make their attacks much easier. One of the most serious mistakes is failing to create a well-defined security policy. A written statement of how your...

On-Demand Webinar

Deploying Multi-Factor Authentication in Your Enterprise

By Robin Tatam

Multi-factor authentication (MFA) exists because of the steady increase in data breach events. A data breach can subject your organization to steep fines, litigation, and even criminal prosecution. And it opens innocent third parties to identify theft, which you may also be legally required to mitigate—at your own expense. MFA protects you from the most common cause of a data breach: compromised...

On-Demand Webinar

PCI Compliance and What It Means to the IBM i Community

Wed, 05/31/2017

The PCI Council has issued several updates to the Payment Card Industry’s Data Security Standard (PCI DSS). Learn what they mean for IBM i.

On-Demand Webinar

Don’t Just Settle for Query/400…

By Mike Stegeman

Watch this webinar to learn how you can get more out of your queries with a modern data access tool.

Blog

What’s the Difference Between Two-Factor Authentication and Multi-Factor Authentication?

By Robin Tatam on Tue, 04/25/2017

Is MFA more secure than 2FA? Are the terms interchangeable? If not, what’s the difference between the two? Keep reading to get the facts.

Blog

Build or Buy: Multi-Factor Authentication Software for IBM i

By Robin Tatam on Mon, 04/24/2017

PCI’s MFA requirements now apply to IBM i. You have two choices: purchase MFA software that’s designed for IBM i or write your own program to link your existing MFA solution to IBM i. What's the best option for your organization?

Article

Generate and Distribute Audit Reports Automatically

By Robin Tatam on Mon, 04/03/2017

Despite the server’s incredible security infrastructure, auditing remains primarily a thankless, manual chore. And, let’s face it, any task that’s thankless and manual probably won’t get done.

Blog

How Exit Programs Make the Greatest Impact on IBM i Security

By Robin Tatam on Tue, 03/28/2017

What do exit points have to do with cybersecurity? How do exit programs work? Robin Tatam provides a clear explanation in this video.

Article

Advantages of Powertech Encryption for IBM i Over the Complexities and Risks of Disk Encryption

By Bob Luebbe on Fri, 03/17/2017

Disk drive encryption may help you comply with PCI DSS, but you must follow strict requirements. Additionally, relying solely on disk drive encryption for data protection has serious potential risks that you should be aware of.

Guide

Controlling SSH for Security and Compliance

SSH is nearly ubiquitous in today’s enterprises, and is the predominant tool for managing unix and linux servers, and the applications and data that they host. Poor practices around the deployment and management of the SSH infrastructure could easily leave your enterprise vulnerable to a breach. Are you in control? SSH, Secure Shell protocol, is now nineteen years old and broadly deployed across...

Guide

Our Privileged Access Management Solution - Your Sudo Replacement

Learn how to reduce the risk of insider fraud, streamline regulatory compliance, and greatly reduce administration efforts with an effective privileged access management solution.

Article

Sudo or SuDon't: Manage Your Privileged Command Execution and Sudo Policies

Mon, 03/13/2017

System admins need root level authority at all times, system operations staff needs periodic database and application account authority, and security admins needing to protect the environment are some of the few of the challenges of managing privilege in the enterprise server infrastructure. Read this article to learn more about Sudo alternatives.

Article

Managing IT Access Privileges

Mon, 03/13/2017

THE UNSOLVED PROBLEM Secure, private, effective use of computers by a company (including hosted, cloud and other services as well as the company’s own systems) relies on managing access privileges. The problem isn’t unique to computers. Office buildings, hotels, apartments and college dorms, for example, typically have “master keys” (or smart ID badges) that can open many-toall of the locks in the...

Article

Solving Healthcare Security Concerns

Mon, 03/13/2017

According to a recent KPMG report, four-fifths of executives at healthcare providers and payers say their information technology has been compromised by cyberattacks. That same report presents how the increased risk to healthcare organizations relates to the richness and uniqueness of the information that health plans, doctors and hospitals handle. Apart from typical financial fraud, there is also...

Article

Pros and Cons for Puppet's Configuration Management & Security

Mon, 03/13/2017

THE GOOD, THE BAD AND THE UGLY I was at the Red Hat Summit in Boston at the end of June. We had a lot of activity at our exhibitor stand, and a lot of discussions being passed on to me by our sales team I continued to have the same conversation again and again over the three days. This seems to be the year people have finished bedding down Puppet in their server/VM infrastructure, and are looking...

Blog

What Does GDPR Mean to an IT Manager, CTO, or Systems Admin?

By Donnie MacColl on Fri, 03/10/2017

GDPR will affect Chief Technology Officers to System Admins and all levels of seniority in between. By preparing for GDPR now, you can anticipate its effects instead of being surprised.

Blog

Building a Better Virus Trap

By Sandi Moore on Fri, 03/10/2017

Not so long ago, viruses were just one of those little annoyances that come along with using a computer, akin to the gnat that orbits your head at the family picnic.

Download "IBM i Security and Integrity Monitoring Handbook"

How to Get Started with NIST 800-171 Compliance

NIST 800-171 Cybersecurity Regulation: How It Affects IT Professionals Everywhere

Expert Tips for Avoiding AIX Security Mistakes

Deploying Multi-Factor Authentication in Your Enterprise

PCI Compliance and What It Means to the IBM i Community

Don’t Just Settle for Query/400…

What’s the Difference Between Two-Factor Authentication and Multi-Factor Authentication?

Build or Buy: Multi-Factor Authentication Software for IBM i

Generate and Distribute Audit Reports Automatically

How Exit Programs Make the Greatest Impact on IBM i Security

Advantages of Powertech Encryption for IBM i Over the Complexities and Risks of Disk Encryption

Controlling SSH for Security and Compliance

Our Privileged Access Management Solution - Your Sudo Replacement

Sudo or SuDon't: Manage Your Privileged Command Execution and Sudo Policies

Managing IT Access Privileges

Solving Healthcare Security Concerns

Pros and Cons for Puppet's Configuration Management & Security

What Does GDPR Mean to an IT Manager, CTO, or Systems Admin?

Building a Better Virus Trap

Contact Information

Privacy Policy

Cookie Policy

Impressum