Compliance Assessment Services
KRI’s Compliance Assessment Services (CAS) provides a proven and tested methodology for assessing CA ACF2® , CA Top Secret® or RACF® environments against current security standards and internal security policies. Mainframe vulnerabilities can come from a variety of sources, including hardware configurations, IPL parameters, External Security Manager (ESM) configurations, and operating system programs. Our services help companies’ rapidly identify and remediate critical vulnerabilities — and help build disconnected security processes into ongoing, policy-based governance.
An assessment will answer questions like:
- Are security parameters in sync with the corporate security policy?
- Do users have the appropriate access?
- Is audit logging appropriate for the level of access given to privileged authorities?
Get accurate results while reducing costs with a proven process
Our Compliance Assessment begins with staff interviews and an assessment of your current operational environment against your Security Policy. An in-depth review of your current security and mainframe z/OS® implementation is achieved using the z/Assure® Compliance Assessment Manager (CAM) product.
We’ve designed the KRI z/Assure Compliance Assessment Manager to not only baseline against your Security policy, but also review current z/OS security configurations against the current DISA STIG standards. Our detailed reporting dramatically reduces the time it takes to verify compliance against 300+ mainframe configuration controls.