"This sort of documentation will help auditors better understand the IBM i, and system administrators better explain details to the auditors. All in all, this will help save everyone's time in the risk assessment portion of a security audit," says Woodbury.
SkyView Risk Assessor for i5/OS and OS/400 is a diagnostic tool that compares your i5/OS security configuration to "security best practices." Designed by Woodbury, an iSeries security expert, the product automates the gathering and analysis of essential security configuration information for IT security audits. Risk Assessor documents your system's security configuration, comparing it to security best practices, analyzes and interprets your risks, and shows you how to remediate the issues.
Risk Assessor gathers security information from more than 100 "risk points" across i5/OS, including 20 different points regarding users on the system, 10 points covering object level authority, 40 points covering system values, 9 points covering exit programs, and 25 points of other considerations including adopted authority, authorization lists and more.
Once the information is gathered, Risk Assessor provides a comprehensive "Assessment Guide" that tells you why an issue it found was raised as a security concern, what things you need to consider before making any changes, and how you could approach "fixing" the issues that have been found.
"The focus on PCI is really going to help our customers and increase the product's appeal in the marketplace," says Woodbury. "Beyond that, we've heard from our customers that it would be really nice if reports could be automatically emailed off the system after they were generated. Well we've answered that by incorporating emailing capabilities in this release as well. As we said many times, our goal is to continually improve our products to help our customers cut down the amount of time spent on all the duties that fall under compliance. Performing regular risk assessments is just one of those duties and Risk Assessor is the right tool for that job," says Woodbury.
General availability of this new release, which runs on V5R1 or later, is set for April 17.
About SkyView Partners
SkyView Partners, Inc is a security specialty firm working with IBM i (AS/400, iSeries and System i ) customers and business partners to architect and implement sound security policies and practices for IBM i (i5/OS). SkyView Partners is headed by Carol Woodbury, former chief engineering manager and security architect for the IBM iSeries product line. SkyView Partners is committed to delivering security compliance products and services that provide its customers with sound advice, save them time, and reduce the costs and complexities of attaining and maintaining compliance. To learn more, visit the SkyView Partners Web site at http://www.skyviewpartners.com/.
Carol Woodbury is IBM i Security SME and Senior Advisor to Kisco Systems, a firm focused on providing IBM i security solutions. Carol has over 30 years’ experience with IBM i security, starting her career as Security Team Leader and Chief Engineering Manager for iSeries Security at IBM in Rochester, MN. Since leaving IBM, she has co-founded two companies: SkyView Partners and DXR Security. Her practical experience and her intimate knowledge of the system combine for a unique viewpoint and experience level that cannot be matched.
Carol is known worldwide as an author and award-winning speaker on security technology, specializing in IBM i security topics. She has written seven books on IBM i security, including her two current books, IBM i Security Administration and Compliance, 3rd Edition and Mastering IBM i Security, A Modern, Step-by-Step Approach. Carol has been named an IBM Champion since 2018 and holds her CISSP and CRISC security certifications.
MC Press books written by Carol Woodbury available now on the MC Press Bookstore.
 |
||
 |
|
IBM i Security Administration and Compliance: Third Edition Don't miss the newest edition by the industry’s #1 IBM i security expert. List Price $71.95 Now On Sale
|
 |
|
Mastering IBM i Security Get the must-have guide by the industry’s #1 security authority. List Price $49.95 Now On Sale
|
Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.
IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn:
LATEST COMMENTS
MC Press Online