TMCnet News
CIO Survey: Mainframe More Secure Than Other Systems, but 84 Percent Say Insider Threats are a Blind SpotNearly Three-quarters of Organizations Rely Only on Log-Files to Detect Insider Threats on the Mainframe, Exposing Them to Data Breaches
DETROIT, June 06, 2017 (GLOBE NEWSWIRE) -- Compuware Corporation, the world’s leading mainframe-dedicated software company, today released a survey of large company CIOs showing that while most (78 percent) say their mainframe is more secure than other systems, the majority (84 percent) say they are still exposed to a significant risk of insider threats due to blind-spots in internal data access and controls. The survey was conducted by independent research company Vanson Bourne, and administered in April to 400 CIOs at large companies covering a cross-section of vertical markets in France, Germany, Italy, Spain, the UK and the U.S. Key findings include:
“The mainframe has always been the most securable platform in the enterprise; whih is why organizations continue to entrust their most sensitive data to it,” said John Crossno, product manager, Compuware. “However, businesses still face the risk that privileged employees, or those who have acquired access illegally, will misuse mainframe data. Organizations must take steps to gain more visibility over who is accessing data and how they are using it.” The research further revealed that the most common measures being used to overcome insider security risks include:
However, just 1 percent of organizations monitor user and database activity to tackle insider threats on the mainframe. “Most enterprises rely solely on disparate logs and SMF data from security products such as RACF to piece together user behavior,” added Crossno. “Even those who are integrating that data into their SIEM aren’t getting the level of insight needed to identify a malicious insider. Organizations need deep insight into what data was viewed, by whom and which applications were used to access it. This can only be achieved by directly capturing complete, start-to-finish user session activity data in real time, and integrating it into a SIEM platform such as Splunk for deep analysis.” To help organizations better meet todays’ security challenges, Compuware has published the white paper, “Mainframe Security in a Hybrid/Mobile World: New Best Practices for the New Threat Matrix.” The paper presents six straightforward, non-disruptive measures to help organizations address insider threats on the mainframe. The full paper can be downloaded here. Compuware Corporation Follow us on: Press Contact Kristina LeBlanc, The Medialink Group, [email protected], (508) 930-5636 For Sales and Marketing Information Compuware Corporation, One Campus Martius, Detroit MI 48226, 800-521-9353, www.compuware.com. Copyright © 2017, Compuware Corporation. All rights reserved. The Compuware products and services listed within this release are trademarks or registered trademarks of Compuware Corporation. |