Transcript Interskill PowerPoint Presentation

Introducing z/OS Security
Mainframe Security Basics
1 hour
z/OS Security
Administration
1 hour
PowerPoint
Our z/OS
Security
z/OS Security Auditing and
Recording
1 hour
z/OS Authorized Program
Facility
1 hour
Our z/OS Security Administration and
Auditing
PowerPoint
Company name
Webinar
Our z/OS Security
Administration and
Auditing
Understanding
z/OS Security and
Your Role
= Datatrain Course Modules
Our SMF
• Logged to Coupling Facility
• Archived to tape every night: one onsite, one offsite
• Kept for 7 years
• Security related events also archived to datasets for reporting
RACF
CICS
DB2
z/OS
2
|
Copyright © Interskill Learning 2012
SMF
Our Other Logging
IMS
• Archived to tape every night: one onsite, one offsite
• Kept for 7 years
Operlog
• Archived to BMC Control/D every night
• Kept for one year
Syslogd
• Routed to Operlog
3
|
Copyright © Interskill Learning 2012
Our Log Access Tools
SMF
• SAS/MXG
• Tivoli z/Secure
• Custom DFSORT ICETOOL jobs
Operlog
• Control/D
IMS Logs
• SAS/MXG
• Tivoli z/Secure
4
|
Copyright © Interskill Learning 2012
Our Security Related Reports
• Logon IDs Suspended
• Logon IDs Not Used for More Than Three Months.
• RACF Rule Changes
• Updates to Sensitive Datasets
• Sensitive z/OS and USS Commands Issued
• Excessive Rule Violations
• Excessive Logons from a Logon ID
• Internal Firecall Utility Use
5
|
Copyright © Interskill Learning 2012
Our Security Administration Tools
• Tivoli z/Secure
• RACF Panels
• RACF TSO Commands
• Internal Firecall
• ASPG ReAct
6
|
Copyright © Interskill Learning 2012
Our Security Audits
External
• Every Two Years
• External Audit Company
• Different Scope Every Audit
Internal
• Every April
• Security Administrators
• Analyze Tivoli z/Secure Audit Reports
7
|
Copyright © Interskill Learning 2012
Our APF Security
• Only Systems Programmers can update APF libraries
• Daily report of APF library updates
• Daily report of commands adding APF authorization
• Annual Audit of APF authorized modules and libraries
8
|
Copyright © Interskill Learning 2012
Introducing z/OS Security
Mainframe Security Basics
Summary
1 hour
• Our SMF
z/OS Security
Administration
1 hour
• Our Other Logging
PowerPoint
Our z/OS
Security
• Our Log Access Tools
z/OS Security Auditing and
Recording
• Our Security Related Reports
• Our Security Administration Tools
• Our Security Audits
1 hour
z/OS Authorized Program
Facility
1 hour
PowerPoint
• Our APF Security
Webinar
Our z/OS Security
Administration and
Auditing
Understanding
z/OS Security and
Your Role
= Datatrain Course Modules
9
|
Copyright © Interskill Learning 2012