(This is a rehash of original Blog entries by Jeroen Tiggelman on Security on developerWorks )
Achieving compliance with IBM Security zSecure Command Verifier and other security approaches
Earlier this month IBM Systems Magazine published an article by Joel Tilton
Using IBM Security zSecure Command Verifier to Achieve Compliance.
Note you can also navigate from there to Joel's earlier article on achieving PCI compliance for FTP.
New STIG compliance checks for MQ with IBM Security zSecure Audit
Jeroen Tiggelman posted a summary of newly available STIG compliance checks for zSecure Audit 2.1.1 on the Service Management Connect - System z blog. The new checks are centered around IBM MQ for z/OS.
An overview of all available compliance controls can be found in a new technote.
You might also be interested in the Redbook
Security on the IBM Mainframe: Volume 1 A Holistic Approach to Reduce Risk and Improve Security
published this month.
Products discussed include IBM InfoSphere Guardium, IBM Security zSecure, IBM Security QRadar, IBM Security Key Lifecycle Manager, IBM Security Identity Manager, IBM Security Access Manager, and others.
If you are planning maintenance for zSecure, you might also want to read up on recent updates to reduce storage use and boost performance.