Mainframe Compliance - Enforcive

The chances are that you face regulatory compliance demands to ensure the security of your data. If you have a mainframe computer (System z) in your organization, you will need special compliance software to give you the added protection, monitoring, auditing and other security capabilities required to achieve compliance on CICS MVS, VSE CICS v2.3 and VSE CICS/TS.

What is compliance? Click here to learn more.

If your company is a publicly listed company in the US, you will have to be compliant with the Sarbanes Oxley Bill. If you issue your own credit or payment cards, then you must comply with the requirement set down in the Payment Card Industry Data Security Standard (PCI DSS). Health funds and health-related organizations are compelled in the US to comply with the demands of HIPAA, the Health Insurance Portability and Accountability Act. In Europe, Basel II is dominant, Canada has its Bill 198 and in Japan JSOX is the main regulatory standard.

Each ruling has its own set of requirements and demands although certain items are seen repeatedly in many of them. Examples are corporate accountability, privacy of data, internal controls, protection of data, monitoring and auditing.

Enforcive Systems Ltd. produces a range of compliance software products for the System z (mainframe) platform, which provide solutions to many of the demands made in these regulations.. Their purpose is to give organizations the added protection, monitoring, auditing and other security capabilities they need in order to achieve compliance on CICS MVS, VSE CICS v2.3 and VSE CICS/TS.

• Protection from unauthorized Telnet access
• Protection from unauthorized FTP access
• Integration with RACF
• Granular control of permissions by user and function
• User access controlled by file, library and application
• Group permissions by IP address, RACF group and other user groups
• Clear and easy-to-understand audit log

• Data protection and masking (file, record and field level)
• Monitoring and auditing of user activity and security events
• Easy authority management for CICS resources at all levels
• Policy management of users and passwords
• Monitoring of security officer activity
• Menu generator
• Application-independent

• Encrypted passwords
• Passwords set and known only by the user
• Forced periodic password changes
• Automatic user locking following repeated wrong passwords
• Policy management of users and passwords
• Controlled user authority to CICS resources at all levels
• Data protection and masking (file, record and field level)
• Monitoring and auditing of user activity and security events
• Monitoring of security officer activity
• Application-Independent

• Easy authority management for CICS resources at all levels
• Data protection and masking (file, record and field level)
• Monitoring and auditing of user activity and security events
• Policy management of users and passwords
• Monitoring of security officer activity
• Menu generator
• Application-independent

• An optional add-on for Enforcive/Security for CICS - MVS
• PC client GUI to manage CICS MVS security
• TCP/IP access control of FTP and Telnet

• Clear and easy display of your security audit
• Detailed filtering criteria to analyze security audit events
• Consolidate security audit data from multiple machines
• Dynamic graphs
• Offload audit data from MF to PC-based database
• Report generator, output to MS Excel, PDF and more

• Read our compliance white papers
• Contact us
• Leave us your contact info and we'll call you