CIO Survey: Mainframe More Secure Than Other Systems, but 84 Percent Say Insider Threats are a Blind Spot
CIO Survey: Mainframe More Secure Than Other Systems, but 84 Percent Say Insider Threats are a Blind Spot
  • monica
  • 승인 2017.06.06 19:05
  • 댓글 0
이 기사를 공유합니다

Nearly Three-quarters of Organizations Rely Only on Log-Files to Detect Insider Threats on the Mainframe, Exposing Them to Data Breaches

  • 78 percent of organizations identify the mainframe as more secure than other systems, with most using it as a core repository for their most sensitive customer data.

  • However, the complexity and siloed nature of mainframe environments make it difficult for businesses to track employee access and usage of customer data.

  • Understanding what and how mainframe data is accessed and used is a blind-spot in comparison with other systems, putting 84 percent of organizations at increased risk of insider threats.

  • New best practices should be followed to improve mainframe security in a hybrid/mobile world.

DETROIT, June 06, 2017 (GLOBE NEWSWIRE) --  Compuware Corporation, the world’s leading mainframe-dedicated software company, today released a survey of large company CIOs showing that while most (78 percent) say their mainframe is more secure than other systems, the majority (84 percent) say they are still exposed to a significant risk of insider threats due to blind-spots in internal data access and controls.

The survey was conducted by independent research company Vanson Bourne, and administered in April to 400 CIOs at large companies covering a cross-section of vertical markets in France, Germany, Italy, Spain, the UK and the U.S. Key findings include:

  • 64 percent of organizations use the mainframe as a core repository of their most sensitive data, storing either more or equal amounts of customers’ Personally Identifiable Information (PII) there as they do on other systems.
  • 78 percent of organizations said their mainframe is more secure than other systems, with a further 21 percent saying it was equally as secure, underscoring why their most sensitive data is stored on the mainframe.
  • 84 percent of organizations said they have a “blind spot” concerning what mainframe data is being accessed and how it’s being used.
  • 84 percent also find it difficult to track who has accessed data stored on the mainframe, exposing them to an increased risk of insider threats.

“The mainframe has always been the most securable platform in the enterprise; which is why organizations continue to entrust their most sensitive data to it,” said John Crossno, product manager, Compuware. “However, businesses still face the risk that privileged employees, or those who have acquired access illegally, will misuse mainframe data. Organizations must take steps to gain more visibility over who is accessing data and how they are using it.”

The research further revealed that the most common measures being used to overcome insider security risks include:

  • Saving security log files for future reference (74 percent)
  • Regularly scanning security logs for inconsistencies (68 percent)
  • Using a SIEM system to perform security analytics using mainframe data (67 percent)
  • Using a SIEM system to combine mainframe data with security data from other systems (58 percent)

However, just 1 percent of organizations monitor user and database activity to tackle insider threats on the mainframe.

“Most enterprises rely solely on disparate logs and SMF data from security products such as RACF to piece together user behavior,” added Crossno. “Even those who are integrating that data into their SIEM aren’t getting the level of insight needed to identify a malicious insider. Organizations need deep insight into what data was viewed, by whom and which applications were used to access it. This can only be achieved by directly capturing complete, start-to-finish user session activity data in real time, and integrating it into a SIEM platform such as Splunk for deep analysis.”

To help organizations better meet todays’ security challenges, Compuware has published the white paper, “Mainframe Security in a Hybrid/Mobile World: New Best Practices for the New Threat Matrix.” The paper presents six straightforward, non-disruptive measures to help organizations address insider threats on the mainframe.

The full paper can be downloaded here.

Compuware Corporation
Compuware empowers the world’s largest companies to excel in the digital economy by fully leveraging their high-value mainframe investments. We do this by delivering highly innovative solutions that uniquely enable IT professionals with mainstream skills to manage mainframe applications, data, and platform operations. Learn more at compuware.com.

Follow us on:

Press Contact

Kristina LeBlanc, The Medialink Group, kristinawleblanc@gmail.com, (508) 930-5636
Mary McCarthy, Public Relations Manager, Compuware, mary.mccarthy@compuware.com, (313) 227-7088

For Sales and Marketing Information

Compuware Corporation, One Campus Martius, Detroit MI 48226, 800-521-9353, www.compuware.com.

Copyright © 2017, Compuware Corporation. All rights reserved. The Compuware products and services listed within this release are trademarks or registered trademarks of Compuware Corporation.

저작권자 © Korea IT Times 무단전재 및 재배포 금지
monica
monica 다른기사 보기
댓글삭제
삭제한 댓글은 다시 복구할 수 없습니다.
그래도 삭제하시겠습니까?
댓글 0
댓글쓰기
계정을 선택하시면 로그인·계정인증을 통해
댓글을 남기실 수 있습니다.
최신순 추천순
Korea IT Times
View Mobile Site
  • #1206, 36-4 Yeouido-dong, Yeongdeungpo-gu, Seoul, Korea(Postal Code 07331)
  • 서울특별시 영등포구 여의도동 36-4 (국제금융로8길 34) / 오륜빌딩 1206호
  • URL: www.koreaittimes.com / m.koreaittimes.com. Editorial Div. 02-578-0434 / 010-2442-9446. Email: info@koreaittimes.com.
  • Publisher: Monica Younsoo Chung. Chief Editorial Writer: Kim Hyoung-joong. CEO: Lee Kap-soo. Editor: Jung Yeon-jin.
  • Juvenile Protection Manager: Yeon Choul-woong. IT Times Canada: Willow St. Vancouver BC, Canada / 070-7008-0005.
  • Copyright(C) Korea IT Times, Allrights reserved.
ND소프트