IBM Systems Magazine, Mainframe - July/August 2017 - 17

Figure 1: CICS Unit of Work ID

On top of this risk is the
additional burden of compliance. Many mainframe clients
struggle to produce adequate
compliance reporting for the
variety of existing regulations
such as the Sarbanes-Oxley Act
(SOX) and PCI DSS. Approved in
2016, the European Union General Data Protection Regulation
(GDPR) impacts all organizations
worldwide that house data for
European subjects. There's little
doubt many mainframe systems
include customer or patient data
on European subjects.

Data Protection
Solutions
Developed with deep mainframe
knowledge and tightly integrated
with the mainframe systems, IBM
offers the most robust software
with the necessary knowledge
to perform these functions
with performance in mind. IBM
Guardium* provides a robust set
of capabilities to protect data,
assess and recommend changes
for security, reduce risk and
improve compliance across the
data landscape. Guardium for
the mainframe includes support
for data activity monitoring, data
classification for DB2*, data
encryption for IMS* and DB2,
and more.
Complementing perimeter controls, Guardium data protection is
the closest layer of protection to
the data and therefore plays a critical role in a holistic information

{
The quantity of
breached records
has reached

Figure 2: Policy-Based
Blocking Access

risk and protection strategy. The
data activity monitoring capability in Guardium for IMS, DB2
and data sets provides real-time
monitoring, alerting and analytics
on data access.
Monitoring mainframe data
access provides the raw data and
the analytics to give you unprecedented insights into the who,
what, where and when of data
access and privilege management.
Some benefits of activity monitoring include:

4 billion,
according to the
IBM X-Force
Threat
Intelligence
Report

*

*

Instantly alert security operations teams of privileged user
access outside of designated
timeframes or from approved
IP addresses
Negative SQL reporting for
DB2 to help detect possible
SQL injection attacks or the
presence of an actor that's
fishing for data. Monitoring
negative SQL codes provides
value to the application
developers and database
administrators by uncovering
application problems that

*

*

*

cause additional overhead on
the system.
Satisfy compliance reporting
requirements (e.g., SOX, PCI
DSS, HIPAA, GDPR)
Mitigate risks. For example,
clients who use Guardium
have uncovered operational
risks by analyzing activity,
such as the user of IDs that are
no longer approved for access.
Enhanced data protection,
including blocking access
and quarantining connections while investigation
takes place

The latest release of the z/OS*
monitoring agents (i.e., S-TAPs),
includes enhancements to
improve monitoring functionality. Significant attention has also
been paid to continuous reduction
of cost by reducing CPU overhead.

Performance
Optimizations
An often-heard barrier to the
adoption of a monitoring solution
is the perceived overhead and

About the Findings
Any performance data contained in this article were determined in various
controlled laboratory environments and are for reference purposes only.
Customers should not adapt these performance numbers to their own
environments as system performance standards. The results that may be
obtained in other operating environments may vary significantly. Users of this
document should verify the applicable data for their specific environment.

ibmsystemsmag.com JULY/AUGUST 2017 // 17

pg 16-19.indd 3

6/13/17 10:08 AM



http://www.ibmsystemsmag.com

IBM Systems Magazine, Mainframe - July/August 2017

Table of Contents for the Digital Edition of IBM Systems Magazine, Mainframe - July/August 2017

Table of Contents
Editor's Desk: Learning About Cognitive Capabilities
Partner PoV: A Clear Picture: IT operational analytics tools can provide a view of management data
Trends: The Connected Mainframe: Java on z Systems delivers portability, security and other benefits
Currents: Keeping Out Risks: Secure Service Containers are a virtual appliance framework for sensitive workloads
IT Today: Protecting Your Crown Jewels: IBM Guardium updates help organizations reduce risk and demonstrate compliance
Feature: Accounting for the Future: Bankwest modernizes its mainframe integration environment with a RESTful API framework and Java
Cover Story: Modeling Machine Learning: Cognitive on IBM z gives clients the tools to make better, faster decisions
Feature: A Thoughtful Pairing: Keeping IBM Machine Learning z/OS next to the data on the mainframe enhances analytics
HotTECH Products
TECH Showcase: Plan for Protection: Five points to consider when preparing for backup and recovery
Hot Topics: Optimized for the Enterprise: IBM Machine Learning for z/OS is supported by Acache Spark
Solutions: JES2MAIL/JES2FTP V5.1, CASI Software; ReACT V5.0, Advanced Software Product Group Inc.; FDR/UPSTREAM Web Portal V2.0.00, INNOVATION Data Processing
Stop Run: Traveling Through Time: IBM archivist assists 'Hidden Figures' movie production with authentic artifacts
Reference Point - Global Events, Education, Resources for Mainframe
2017 Mainframe Solutions Edition
IBM Systems Magazine, Mainframe - July/August 2017 - Intro
IBM Systems Magazine, Mainframe - July/August 2017 - Cover1
IBM Systems Magazine, Mainframe - July/August 2017 - Cover2
IBM Systems Magazine, Mainframe - July/August 2017 - 1
IBM Systems Magazine, Mainframe - July/August 2017 - Table of Contents
IBM Systems Magazine, Mainframe - July/August 2017 - 3
IBM Systems Magazine, Mainframe - July/August 2017 - 4
IBM Systems Magazine, Mainframe - July/August 2017 - 5
IBM Systems Magazine, Mainframe - July/August 2017 - Editor's Desk: Learning About Cognitive Capabilities
IBM Systems Magazine, Mainframe - July/August 2017 - 7
IBM Systems Magazine, Mainframe - July/August 2017 - Partner PoV: A Clear Picture: IT operational analytics tools can provide a view of management data
IBM Systems Magazine, Mainframe - July/August 2017 - 9
IBM Systems Magazine, Mainframe - July/August 2017 - Trends: The Connected Mainframe: Java on z Systems delivers portability, security and other benefits
IBM Systems Magazine, Mainframe - July/August 2017 - 11
IBM Systems Magazine, Mainframe - July/August 2017 - 12
IBM Systems Magazine, Mainframe - July/August 2017 - Currents: Keeping Out Risks: Secure Service Containers are a virtual appliance framework for sensitive workloads
IBM Systems Magazine, Mainframe - July/August 2017 - 14
IBM Systems Magazine, Mainframe - July/August 2017 - 15
IBM Systems Magazine, Mainframe - July/August 2017 - IT Today: Protecting Your Crown Jewels: IBM Guardium updates help organizations reduce risk and demonstrate compliance
IBM Systems Magazine, Mainframe - July/August 2017 - 17
IBM Systems Magazine, Mainframe - July/August 2017 - 18
IBM Systems Magazine, Mainframe - July/August 2017 - 19
IBM Systems Magazine, Mainframe - July/August 2017 - Feature: Accounting for the Future: Bankwest modernizes its mainframe integration environment with a RESTful API framework and Java
IBM Systems Magazine, Mainframe - July/August 2017 - 21
IBM Systems Magazine, Mainframe - July/August 2017 - 22
IBM Systems Magazine, Mainframe - July/August 2017 - 23
IBM Systems Magazine, Mainframe - July/August 2017 - 24
IBM Systems Magazine, Mainframe - July/August 2017 - 25
IBM Systems Magazine, Mainframe - July/August 2017 - Cover Story: Modeling Machine Learning: Cognitive on IBM z gives clients the tools to make better, faster decisions
IBM Systems Magazine, Mainframe - July/August 2017 - 27
IBM Systems Magazine, Mainframe - July/August 2017 - 28
IBM Systems Magazine, Mainframe - July/August 2017 - 29
IBM Systems Magazine, Mainframe - July/August 2017 - Feature: A Thoughtful Pairing: Keeping IBM Machine Learning z/OS next to the data on the mainframe enhances analytics
IBM Systems Magazine, Mainframe - July/August 2017 - 31
IBM Systems Magazine, Mainframe - July/August 2017 - 32
IBM Systems Magazine, Mainframe - July/August 2017 - 33
IBM Systems Magazine, Mainframe - July/August 2017 - 34
IBM Systems Magazine, Mainframe - July/August 2017 - 35
IBM Systems Magazine, Mainframe - July/August 2017 - HotTECH Products
IBM Systems Magazine, Mainframe - July/August 2017 - 37
IBM Systems Magazine, Mainframe - July/August 2017 - 38
IBM Systems Magazine, Mainframe - July/August 2017 - 39
IBM Systems Magazine, Mainframe - July/August 2017 - 40
IBM Systems Magazine, Mainframe - July/August 2017 - TECH Showcase: Plan for Protection: Five points to consider when preparing for backup and recovery
IBM Systems Magazine, Mainframe - July/August 2017 - 42
IBM Systems Magazine, Mainframe - July/August 2017 - 43
IBM Systems Magazine, Mainframe - July/August 2017 - 44
IBM Systems Magazine, Mainframe - July/August 2017 - 45
IBM Systems Magazine, Mainframe - July/August 2017 - 46
IBM Systems Magazine, Mainframe - July/August 2017 - 47
IBM Systems Magazine, Mainframe - July/August 2017 - Hot Topics: Optimized for the Enterprise: IBM Machine Learning for z/OS is supported by Acache Spark
IBM Systems Magazine, Mainframe - July/August 2017 - 49
IBM Systems Magazine, Mainframe - July/August 2017 - 50
IBM Systems Magazine, Mainframe - July/August 2017 - 51
IBM Systems Magazine, Mainframe - July/August 2017 - 52
IBM Systems Magazine, Mainframe - July/August 2017 - 53
IBM Systems Magazine, Mainframe - July/August 2017 - Solutions: JES2MAIL/JES2FTP V5.1, CASI Software; ReACT V5.0, Advanced Software Product Group Inc.; FDR/UPSTREAM Web Portal V2.0.00, INNOVATION Data Processing
IBM Systems Magazine, Mainframe - July/August 2017 - 55
IBM Systems Magazine, Mainframe - July/August 2017 - Stop Run: Traveling Through Time: IBM archivist assists 'Hidden Figures' movie production with authentic artifacts
IBM Systems Magazine, Mainframe - July/August 2017 - Cover3
IBM Systems Magazine, Mainframe - July/August 2017 - Cover4
IBM Systems Magazine, Mainframe - July/August 2017 - Reference Point - Global Events, Education, Resources for Mainframe
IBM Systems Magazine, Mainframe - July/August 2017 - 2017 Mainframe Solutions Edition
IBM Systems Magazine, Mainframe - July/August 2017 - SE2
IBM Systems Magazine, Mainframe - July/August 2017 - SE3
http://www.ibmsystemsmagmainframedigital.com/mspcomm/ibmsystemsmag/ibmsystems_mainframe_20200708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20200506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20200304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20200102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/2020mfse
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20191112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20190910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20190708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20190506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20190304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/relevantz_20190102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/2019mfse
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20190102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20181112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20180910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20180708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20180506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20180304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20180102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/2018mfse
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20171112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20170910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20170910_v2
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20170708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20170506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20170304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_sesupp
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20170102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_linuxsupp
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20161112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/MainframeSecurity
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20160910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20160708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20160506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20160304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20160102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20151112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150910_se
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150910
http://www.ibmsystemsmagmainframedigital.com/MFSkills
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150506_supp
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20150102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20141112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20140910_v2
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20140910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20140708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_gt_201405
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/BigData
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20140506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20140304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20140102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20131112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20130910_v2
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20130910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20130708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20130506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20130304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20130102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20121112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/buyersguide2013
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20120910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20120708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20120506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20120304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20120102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/ibmsystems_mainframe_2012bg
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20111112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20110910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20110708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20110506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20110304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20110102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20101112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20100910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20100910_bg
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20100708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20100506
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20100304
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20100102
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20091112
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20090910
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20090708
http://www.ibmsystemsmagmainframedigital.com/nxtbooks/ibmsystemsmag/mainframe_20090506
https://www.nxtbook.com/nxtbooks/ibmsystemsmag/mainframe_20090304
https://www.nxtbookmedia.com