Presentation is loading. Please wait.

Presentation is loading. Please wait.

1 Assessment Comprehensive Analysis of System i Security.

Published byMildred Porter Modified over 9 years ago

Similar presentations

Presentation on theme: "1 Assessment Comprehensive Analysis of System i Security."— Presentation transcript:

1 1 Assessment Comprehensive Analysis of System i Security

2 2 In-depth full scope analysis of System i security strengths and weaknesses Pinpoints specific issues/areas requiring attention Full report produced, grading each aspect of server security Detailed explanations provided for each item in report Assessment Features

3 3 Objectives Set “baseline” for corporate security policies Check compliance with external regulations & baseline corporate security policy Prioritize security efforts Identify security issues before they occur Deliverables User-friendly report covering network access, system auditing, user management, terminal access, password policy, etc. Assessment recommendations based upon security best practices Sample questions answered Who is using FTP (file transfer) to download files? Which application files are being transmitted via the network? Which system value settings are not in accordance with our site’s policies? How many of our users have non-secure passwords? Which user profiles are not being used and should be disabled? Assessment Objectives & Deliverables

4 4 Security Assessment Application

5 5 Security Assessment Report Executive Summary: A proper and thorough security policy can only be implemented after assessing the strengths and weaknesses of your i5 server. The following i5 server 1.1.1.100 underwent comprehensive security checks in order to gauge this vital criterion. This report is structured in the following way. Each subject, such as Attributes, or User Class, is listed together with its descriptive components, such as Value, Risk, etc. There are two scores listed - a current score with the native protection of 1.1.1.100 and a score with that system protected with iSecurity. Following each subject, a table of explanation is listed detailing all possible scores. Subject by Subject Assessment Summary: Sign-on AttributesAverage Score: Explanation: A few settings are in accordance but most require immediate modification. Unattended terminals Average Score: Explanation: Your settings are faulty. It is necessary that you take immediate steps to correct your settings or else face a security hazard to your network. Password ControlAverage Score: Explanation: Your settings are faulty. It is necessary to take immediate steps to correct your settings to avoid a possible security hazard. Registration Facility Exit Points Protection Average Score: Explanation: Most of your exit points are protected, but you require minimal revision to be 100% protected.

6 6 Security Assessment Report (2) Detailed Assessment – Section 3.3 Unattended Terminals:

7 7 Security Assessment Report (3) Detailed Assessment – Section 3.11 Other Users and Passwords Default passwords are easy-to-guess for potential intruders, and therefore pose a high security risk. This risk becomes real and immediate if the users are enabled; otherwise the risk remains dormant. Score with iSecurity: Average Score: Explanation: This number is too high and poses a security risk. You must immediately reduce the number of enabled users. Importance Description NumberCurrent Score Enabled users (Very High Risk)7 Users with default password that can sign on 3

8 8 Please visit us at www.razlee.com Thank You!

Download ppt "1 Assessment Comprehensive Analysis of System i Security."

Similar presentations

Firewall End-to-End Network Access Protection for System i.

Firewall End-to-End Network Access Protection for System i.
COMPREHENSIVE APPROACH TO INFORMATION SECURITY IN ADVANCED COMPANIES.

COMPREHENSIVE APPROACH TO INFORMATION SECURITY IN ADVANCED COMPANIES.
1 Authority on Demand Flexible Access Control Solution.

1 Authority on Demand Flexible Access Control Solution.
Www.mcaspass.com Customized math instruction via the Internet All it took was a little effort … and the MCAS-Pass Learning Lab.

Customized math instruction via the Internet All it took was a little effort … and the MCAS-Pass Learning Lab.
Syslog for SIEM using iSecurity Real-Time Monitoring of IBM i Security Events.

Syslog for SIEM using iSecurity Real-Time Monitoring of IBM i Security Events.
1 User Management. 2 Presents comprehensive information on user profiles Enabled/disabled Password exists/doesn’t exist Password expiration date No. of.

1 User Management. 2 Presents comprehensive information on user profiles Enabled/disabled Password exists/doesn’t exist Password expiration date No. of.
2010 Region II Conference Corporate Compliance Panel June 3, 2010

2010 Region II Conference Corporate Compliance Panel June 3, 2010
1 Visualizer for Firewall Display & Analysis Tool.

1 Visualizer for Firewall Display & Analysis Tool.
ISecurity Complete Product Series For System i. About Raz-Lee Internationally renowned System i solutions provider Founded in 1983; 100% focused on System.

ISecurity Complete Product Series For System i. About Raz-Lee Internationally renowned System i solutions provider Founded in 1983; 100% focused on System.
1 Password Advanced Password Management. 2 Standard Password Management including tool for blocking usage of easily cracked passwords Extensive dictionary.

1 Password Advanced Password Management. 2 Standard Password Management including tool for blocking usage of easily cracked passwords Extensive dictionary.
Www.lumension.com © Copyright 2008 - Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.

© Copyright Lumension Security Lumension Security PatchLink Enterprise Reporting™ 6.4 Overview and What’s New.
Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.

Chapter 9 Chapter 9: Managing Groups, Folders, Files, and Object Security.
Aspect-Oriented Software Development (236601) 1 Home Assignment (what, where and when)

Aspect-Oriented Software Development (236601) 1 Home Assignment (what, where and when)
70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.

70-290: MCSE Guide to Managing a Microsoft Windows Server 2003 Environment, Enhanced Chapter 10: Server Administration.
Vulnerability Assessments

Vulnerability Assessments
1 Audit Next Generation Monitoring, Compliance & QAUDJRN Reporting.

1 Audit Next Generation Monitoring, Compliance & QAUDJRN Reporting.
1 System Control & MSGQ. 2 System Control & MSGQ Features Uses QSYSOPR or any application message queue data as input to iSecurity Action module Enables.

1 System Control & MSGQ. 2 System Control & MSGQ Features Uses QSYSOPR or any application message queue data as input to iSecurity Action module Enables.
ISecurity End-to-End Security. Part 1 Overview About Raz-Lee Internationally renowned System i solutions provider Founded in 1983; 100% focused on System.

ISecurity End-to-End Security. Part 1 Overview About Raz-Lee Internationally renowned System i solutions provider Founded in 1983; 100% focused on System.
Audit Next Generation Monitoring, Compliance & Reporting

Audit Next Generation Monitoring, Compliance & Reporting
1 Compliance Evaluator Single-View Overall Compliance Reports.

1 Compliance Evaluator Single-View Overall Compliance Reports.

Similar presentations

Ads by Google