Improve mainframe security, say users – because data privacy rules are getting tougher, cyber criminals are getting smarter and mainframes are more connected to the outside world
While IBM Z systems have long been respected for their security, most of the users surveyed recognize that mainframe security needs more attention. Only around seven per cent feel there is no need for improvement.
86 per cent cited tougher regulations such as the GDPR among the main reasons for making access to mainframes more secure. Other key drivers are the increasing sophistication of cyber criminals (mentioned by 80 per cent) and the fact that mainframes are now more connected to the outside world, and therefore more vulnerable (67 per cent).
“Far from being a closed off environment, today’s mainframe is typically connected to the internet, because it runs important business applications that need to be accessed by millions of enterprise users and customers across the globe,” explained Keith Banham, Mainframe Research and Development Manager at Macro 4. “Anyone who has ever booked a flight, purchased insurance online or used internet banking is likely to have interacted with a mainframe somewhere along the line.
“Growing web and mobile access to the mainframe, combined with hackers getting smarter – and tougher rules and sanctions around data breaches – makes mainframe security a priority.”
Mainframe security is handled by software products such as RACF that tightly control user access to resources such as applications and data. However, the majority of the survey sample agree that security can be improved by adopting additional methods that IBM and other vendors are currently championing.
96 per cent of respondents agreed that data encryption is an important way of securing the mainframe, in line with IBM’s increased focus on this method following the launch of pervasive encryption for its new z14 model.
Similarly, with IBM now supporting multi-factor authentication as a more secure alternative to traditional password-only access, 67 per cent agree it is an important additional security measure.
58 per cent of the sample recognize the importance of data minimization, which involves strictly limiting the personal data that is collected and stored to the minimum necessary to accomplish a specific purpose.
“None of us in the mainframe community can afford to be complacent and it is encouraging to see the growing uptake of new security technologies,” added Keith Banham. “Our parent company, UNICOM Global, recently acquired the new z14, which is leading the way with its ‘encrypt everything’ approach. Multi-factor authentication is another area that’s attracting a great deal of interest and the good news is you can implement it relatively easily if you use a session manager, which is a message that went down well at the GSE conference.”
Macro 4 ran the survey of 55 IBM mainframe users at the GSE UK Conference held by Guide Share Europe (GSE), the premier IBM User Group in Europe, from November 7–8, 2017.
A short guide to the GDPR is available at: www.macro4.com/what-is-the-gdpr.
About Macro 4 www.macro4.com
Macro 4, a division of UNICOM Global, develops software solutions that accelerate business transformation. Macro 4’s cross-platform enterprise information management solutions make it easy for companies to go digital, personalize customer communications and unlock the value of their corporate content. Macro 4 solutions for application lifecycle management, session management and performance optimization are used by many of the world’s largest enterprises to modernize their mainframe applications and development processes.
About UNICOM® Global www.unicomglobal.com
UNICOM Global consists of more than forty (40) corporate entities encompassing a wide range of businesses across all geographic regions. With its corporate headquarters in Los Angeles, California, to offices in Illinois, Kentucky, Florida, Massachusetts, Maryland, Minnesota, New Hampshire, North Carolina, New Jersey, New York, Texas and Virginia, throughout EMEA in the UK, Ireland, Germany, France, Italy, Spain, Denmark, Belgium, Switzerland and the UAE, and across Asia/Pacific with locations in Japan, China, India, Australia, Korea, Thailand, Taiwan and the Philippines. UNICOM Global offers deep in-house resources and flexible IT solutions to partners worldwide, and is continually focused on acquiring and integrating mature and growing mid-cap NASDAQ, London Stock Exchange AIM and German publically-traded companies in technology, financing, IT, real estate, and business services. Visit UNICOM’s websites for additional information about the services, products and solutions that the Company offers:
unicomglobal.com UNICOM Global – Parent organization for all UNICOM entities
unicomsi.com UNICOM Systems – Enterprise Automation and Performance Solutions
unicomgov.com UNICOM Government (formerly NASDAQ: GTSI) – Government IT solutions
unicomengineering.com UNICOM Engineering (formerly NASDAQ: NEI) – Purpose-built appliance platforms
unicom.org UNICOM Science and Technology Parks
unicom-capital.com UNICOM Capital – Business and Financial Services
solidDB.com solidDB – In-memory relational database management system
usrobotics.com USRobotics.com – Portal for IoT, Cloud Computing and Communications Divisions
memeo.com Memeo – Enterprise-grade Secure File Sharing for the Cloud
firetide.com Firetide – Safety and Security Solutions through wireless products
detec.com DETEC – Document composition products
softlanding.com SoftLanding Systems – IBM i and Power platform software products
macro4.com Macro 4 (formerly LONDON: MAO) – Document and Application Management
illustro.com illustro – Modernization enabling software solutions
iet-solutions.com Solutions – ITIL ITSM software solutions
eden.com Eden – Portal for Business and Financial Services, Real Estate and Financing
cics.com CICS.com – Portal for UNICOM’s Enterprise Software Divisions
All trademarks referenced herein are trademarks of their respective companies.
CloudNine PR Agency