All times are listed below in Central Standard Time (CST)
Note: The US Daylight Savings Time change will occur on March 14. All sessions after that date are listed in Central Daylight Time (CDT).
28603 - Staying Ahead of the Bad Guys: Continuous Monitoring for Attacks
Track: Enterprise Data Center
Security event management is an enterprise challenge today. With so many attack surfaces across IT infrastructure, ensuring a single view of security-related activity is crucial to reducing risk. This session helps you define ways to integrate your mainframe into your enterprise tools, how to develop a single security strategy for all aspects of IT infrastructure, staying on top of reporting and baseline changes, and how to select events that should be sent to your SIEM and which ones should be real-time alerts. Continuous mainframe monitoring includes:
• Sensitive System and Security Controls
• Privilege access
• Sensitive System and Security Changes
• Monitoring USS side of z/OS
• Privacy/Sensitive data, where is it and where are the copies, who and when has it been accessed
• z/OS Baseline automated reporting
• And more
This session will help you sort it all out and begin to set priorities.