|
|
|
IBM i Security Tips
Carol Woodbury, Editor
April 2011
|
|
|
|
|
|
|
Managing the IBM i Audit Journal Receivers
by Steven W. Martinson, CISSP, CISM, CISA
Senior Consultant, SkyView Partners, Inc.
In the November 2010 newsletter "The Power of the Audit Journal," Carol Woodbury covered both the obvious and not-so-obvious security-relevant information that can be contained within the IBM i audit journal receivers. As it is vitally important to ensure that critical events are tracked and the proper level of auditing is enabled on your system(s) via the QAUDCTL, QAUDLVL, and QAUDLVL2 system values, it is just as important to properly manage the audit journal receivers that are generated by the QAUDJRN journal. Let's look at some recommendations ... |
'Silos' Of Security Processes Still Not Integrated
Log management, compliance reporting, real-time monitoring, forensic investigation, and incident response still not coordinated, according to SenSage study.
|
IBM Identifies Where External Risk Lies
Over the past week, IBM released results from its semiannual X-Force 2010 Trend and Risk Report that show that public and private organizations around the world faced increasingly sophisticated, customized IT security threats in 2010.
|
Data Breach Mistakes Feared More Than Hackers By Compliance Professionals
Fully 61% believed that an accidental breach by an employee was very or somewhat likely.
Read the Complete Article |
After breach at RSA, two-factor authentication options abound
A security breach involving the RSA SecurID authentication technology just weeks before the Infosecurity Europe conference is providing a boost to rival vendors of two-factor and multifactor authentication.
Read the Complete Article |
SkyView Partners Solutions
SkyView Partners is dedicated to providing software that helps you reduce the costs and complexities of attaining and maintaining compliance.
SkyView Security Compliance Solution is a turnkey solution for fully installed and configured security compliance reporting on IBM i (iSeries) servers. (All you have to do is check your email.)
SkyView Policy Minder is an IBM i & i5/OS security compliance management tool that automates security policy compliance monitoring and delivers comprehensive security administration functionality.
SkyView Risk Assessor is an automated IBM i & i5/OS security diagnostic tool that analyzes your security settings from more than 100+ "risk points" compared to security best practices. NEW - SkyView Audit Journal Reporter provides pre-defined, auditor-ready reports on the events recorded in the IBM i audit journal.
|
|
 |  |  |
|
Upcoming Webinar
Simplifying IBM i Security Administration Tasks
by Carol Woodbury Thurs, May 5, 2011 8:00 AM PDT How many IBM i security administration tasks do you regularly perform? such as - discovering and managing inactive profiles,
- detecting changes to system values (along with who made the change),
- discovering who or what process has deleted an object or created a program into a production library.
- and many more
Join Carol Woodbury as she demonstrates how you can automate many of these every day security administration tasks
|
|
| |
|
Success StorySkyView Meets Napa Recycling's IT Security Needs
"I was very comfortable with SkyView from the beginning. They walked me through the processes involved in assessing the current system and identifying the problem, and provided a road map and user training documents. It was easy to work with them and they made the changes solid and painless." Mike Murray, CFO at Napa Recycling and Waste Read the full Case Study
|
|
|
|
|
|
|
|
Carol Woodbury's COMMON Speaking Schedule.
Sunday May 1st @ 9:30 am, MCC, 101H
- Laying the Foundation of IBM i Security
Monday May 2nd @ 9:30 am, MCC, 101H
- Step by Step Approach to Implementing Object Level Security
Monday May 2nd @ 5:00 pm, MCC, 208CD
- Security and Compliance Considerations for the Cloud
Tuesday May 3rd @ 11:00 am, MCC, 101F
- We've Passed our Audit - Now What?
|
|
|
|
|
