My IBM Log in
IBM zSecure Audit

IBM zSecure Audit
Measure and verify your mainframe security policies and compliance
Get the Cost of a Data Breach report
2 employees looking at laptop

Control your mainframe security compliance

IBM® zSecure Audit enhances the security of existing Z Systems® such as RACF®, ACF2 and Top Secret by enforcing and enhancing security policies. Automated reports can locate vulnerabilities and compliance issues in strict compliance environments such as PCI DSS, STIG and more.
Helps eliminate outages

Avoid needless expenses through coverage of audit control points and security event records.
Delivers customized reports

Generate customizable reports for any security breach to help quickly locate problems.
Minimizes security risks

Use data analytics to detect system changes to help minimize security risks.
Gathers and analyzes the data

Access real-time security data on mainframes with IBM RACF, CA ACF2 or CA Top Secret.

X-Force® Threat Intelligence Index 2024

Data theft and leaks accounted for 32% of the impacts of cyberattacks in 2023. Check out the new report to learn how to best safeguard your people and data.

Monitor and secure data across hybrid cloud

Designed for your needs

  1. Detection
Automated detection of security exposure or misconfigurations Automatically generated reports in standard or customized formats help you to quickly locate problems, providing vulnerability analysis of your mainframe, driving discretionary access control and reducing errors.
Event collection from multiple event-collection providers Automated compliance framework testing and enhanced reporting capabilities help you quickly locate vulnerabilities and compliance issues in strict environments such as for Payment Card Industry Data Security Standard (PCI DSS), Security Technical Implementation Guide (STIG) and other similar standards.
Customizable reports for security breaches zSecure Audit can email reports daily when specific events occur or when there is a security breach. Extensive reporting capabilities allow you multiple customization opportunities.
Integration with SIEMs including QRadar® Access audit events and user access logs generated by IBM security management tools populated within security information and event management (SIEM) solutions, including IBM QRadar for normalization and compliance reporting.
Modernize with IBM Cloud Pak® for Security zSecure Audit and zSecure Alert integrate with SIEM platforms such as QRadar to use the capabilities of IBM Cloud Pak for Security (CP4S). CP4S centralizes security data and workflows, providing a unified console for IBM and third-party tools. It enables quick actions through AI and automation, simplified processes and remote accessibility through a multicloud platform.
Extensive coverage of SMF records zSecure Audit offers extensive coverage of system management facilities (SMF) records and predefined event reports, enabling you to report on user behavior and identify users who circumvent system security. The CARLa Auditing and Reporting Language (CARLa) used in zSecure Audit enables you to modify the displays and reports by using SMF and other data sources.
Automated detection of security exposure or misconfigurations Automatically generated reports in standard or customized formats help you to quickly locate problems, providing vulnerability analysis of your mainframe, driving discretionary access control and reducing errors.
Event collection from multiple event-collection providers Automated compliance framework testing and enhanced reporting capabilities help you quickly locate vulnerabilities and compliance issues in strict environments such as for Payment Card Industry Data Security Standard (PCI DSS), Security Technical Implementation Guide (STIG) and other similar standards.
Customizable reports for security breaches zSecure Audit can email reports daily when specific events occur or when there is a security breach. Extensive reporting capabilities allow you multiple customization opportunities.
Integration with SIEMs including QRadar® Access audit events and user access logs generated by IBM security management tools populated within security information and event management (SIEM) solutions, including IBM QRadar for normalization and compliance reporting.
Modernize with IBM Cloud Pak® for Security zSecure Audit and zSecure Alert integrate with SIEM platforms such as QRadar to use the capabilities of IBM Cloud Pak for Security (CP4S). CP4S centralizes security data and workflows, providing a unified console for IBM and third-party tools. It enables quick actions through AI and automation, simplified processes and remote accessibility through a multicloud platform.
Extensive coverage of SMF records zSecure Audit offers extensive coverage of system management facilities (SMF) records and predefined event reports, enabling you to report on user behavior and identify users who circumvent system security. The CARLa Auditing and Reporting Language (CARLa) used in zSecure Audit enables you to modify the displays and reports by using SMF and other data sources.

Take the next step

Schedule a meeting with an IBM expert to learn more about IBM zSecure Audit.

 Join the community
More ways to explore Community Blog Learning Academy Support Documentation Installation and deployment
Overview Annual report Corporate social responsibility Inclusion@IBM Financing Investor Newsroom Security, privacy & trust Senior leadership Careers with IBM Website Blog Publications Automotive Banking Consumer Goods Energy Government Healthcare Insurance Life Sciences Manufacturing Retail Telecommunications Travel Our strategic partners Find a partner Become a partner - Partner Plus Partner Plus log in IBM TechXChange Community LinkedIn X Instagram YouTube Subscription Center Participate in user experience research Podcasts United States — English Contact IBM Privacy Terms of use Accessibility