IBM Support

IBM zSecure Compliance 3.2 Compliance Standards (March 2026)

News


Abstract

This document provides an overview of the compliance standards available in zSecure Compliance 3.2 on March 27, 2026.
Automation is added for CIS IBM CICS for z/OS Benchmark 1.1.0. DISA STIG standards are updated to the new versions published by DISA in January 2026.

Content

Summary of changes since zSecure 3.2 (September 2025)

  • The following versions were updated:
Standard nameVersion
RACF		Version
ACF2		Version
Top Secret
z/OS BMC CONTROL-D STIG7.027.027.02
z/OS BMC CONTROL-M/Restart7.027.027.02
z/OS BMC CONTROL-M STIG7.027.027.02
z/OS BMC CONTROL-O STIG7.027.027.02
z/OS BMC Integrated Operations Architecture (IOA) STIG7.027.027.02
z/OS BMC MainView Systems Management STIG7.027.027.02
z/OS CA Auditor STIG7.027.027.02
z/OS CA Common Services STIG7.027.027.02
z/OS CA Management Information Control System (MICS) Resource Management STIG7.027.027.02
z/OS CA Multi-image Manager (MIM) Resource Sharing STIG7.027.027.02
z/OS CA Roscoe Interactive Environment STIG7.027.027.02
z/OS CA Vtape Virtual Tape System STIG7.027.027.02
z/OS CA 1 Tape Management STIG7.027.027.02
z/OS Catalog Solutions STIG7.027.027.02
z/OS Compuware Abend-AID STIG7.027.027.02
z/OS Fast Dump Restore (FDR) STIG7.027.027.02
z/OS Front End Processor (FEP) STIG7.027.027.02
z/OS IBM CL/SuperSession STIG7.027.027.02
z/OS IBM Communications Server Simple Mail Transfer Protocol (CSSMTP) STIG7.017.017.01
z/OS IBM Customer Information Control System (CICS) Transaction Server STIG7.027.027.02
z/OS IBM Hardware Configuration Definition (HCD) STIG7.027.027.02
z/OS IBM HealthChecker STIG7.017.017.01
z/OS IBM MQ STIG7.037.027.02
z/OS IBM System Display and Search Facility (SDSF) STIG7.027.027.02
z/OS IBM Tivoli® Asset Discovery (TADz) STIG7.027.027.02
z/OS IBM Transparent Data Migration Facility (TDMF) STIG7.027.027.02
z/OS IBM WebSphere® Application Server (WAS) STIG7.027.027.02
z/OS Quest NC-Pass STIG7.027.027.02
IBM Z® NetView7.027.027.02
z/OS SRRAUDIT STIG7.027.027.02
z/OS Vanguard Security Solutions (VSS) STIG7.02  
  • Automation for the following CIS IBM CICS for z/OS Benchmark controls is added:
CIS-CICS-1.1.1Ensure that RACF changes are accepted immediately
CIS-CICS-1.2.1Ensure that only authorized users can run transactions
CIS-CICS-1.2.2Ensure that only authorized users can access resources
CIS-CICS-1.3.1Ensure that SIT parameter SEC=YES is set in all regions
CIS-CICS-1.4.1Ensure that only authorized users can issue SPI commands
CIS-CICS-1.4.2Ensure that a user requires authorization to start work under a different userid
CIS-CICS-2.1.1Ensure that passwords are redacted in line traces
CIS-CICS-3.1.1Ensure that no unencrypted IP connections use BASICAUTH

The updates are indicated by revision bars in the left margin of the PDF file for this version: zSecure Compliance 3.2.0 Compliance Standards (March 2026).

Previous versions

[{"Line of Business":{"code":"LOB70","label":"Z TPS"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSO5Y9T","label":"IBM Z Security and Compliance Center"},"ARM Category":[{"code":"a8m3p000000hC73AAE","label":"ZSCC-\u003EDocumentation"}],"Platform":[{"code":"PF035","label":"z\/OS"}],"Version":"1.3.0","Type":"MASTER"},{"Line of Business":{"code":"LOB70","label":"Z TPS"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSHFX9","label":"IBM zSecure Audit"},"ARM Category":[{"code":"a8m0z000000GoYsAAK","label":"zSecure Audit-\u003EDocumentation"}],"Platform":[{"code":"PF035","label":"z\/OS"}],"Version":"3.2.0","Type":"MASTER"},{"Line of Business":{"code":"LOB70","label":"Z TPS"},"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSGP61P","label":"IBM zSecure Compliance"},"ARM Category":[{"code":"a8m0z000000GoYsAAK","label":"zSecure Audit-\u003EDocumentation"}],"Platform":[{"code":"PF035","label":"z\/OS"}],"Version":"3.2.0","Type":"MASTER"}]

Document Information

Modified date:
27 March 2026

UID

ibm17259733

Page Feedback