• The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
Menu
  • The Four Hundred
  • Subscribe
  • Media Kit
  • Contributors
  • About Us
  • Contact
  • PowerTech Goes Multi-Platform with Security Policy Software

    March 9, 2016 Dan Burger

    Regulatory compliance standards have forced companies to pay attention to IT security and be accountable for who has authority and how much authority they have. In general, the track record on this type of thing is a horror story. Organizations often hover on the verge of near compliance. And compliance requirements, by their nature, continually evolve. This is why software such as PowerTech‘s Policy Minder has been developed.

    It’s the responsibility of the system administrators and IT departments to make sure they are in compliance with regulatory measures like the Payment Card Industry Data Security Standard (PCI DDS), Sarbanes-Oxley (SOX), and the Health Insurance Portability and Accountability Act (HIPAA) that require a data protection policy–a written statement of how the organization protects IT assets, including customer data. Automated compliance reporting eliminates most of the manual work involved in checking compliance for user accounts, files, and configuration settings. Policy exceptions can even be remedied automatically.

    Policy Minder came on the market in 2005. The IBM i security administration tool was created by Carol Woodbury, who earlier in her career was the top security expert at IBM Rochester. Woodbury designed it to automate the management of security policies, by checking security settings and configurations against security policies and by changing settings and configurations to match internal policies and compliance regulations.

    When introduced, Policy Minder was offered by Woodbury’s company Skyview Partners. As the product evolved, it gained multi-platform capabilities by supporting Linux and AIX. In June 2015, HelpSystems acquired SkyView and folded it into its PowerTech security line of products, where multi-platform capabilities have become a priority.

    HelpSystems, one of the largest software vendors in the IBM i community, has made multi-platform administration software a priority, so Policy Minder is a good example of the development direction that company is promoting.

    Chris Heim, CEO of HelpSystems, says the need for multi-platform security administration software is clear. He says Policy Minder will support Windows and variants of Unix later this year.

    One difference that we see in Policy Minder since being incorporated into the PowerTech brand is mobile capability. HelpSystems has a mobile initiative that uses responsive design in its software so that regardless of the device the presentation of information will scale and render for optimum viewing on the device whether it is desktop, laptop, tablet or phone. Mobile capability for minding system admin duties is clearly a value for users.

    The primary benefits of Policy Minder, however, come from the capability to quickly determine who has access to the system, whether they need to be there, is their level of authority appropriate, and whether patch levels are current.

    “These are essentially your company’s security policies,” HelpSystems’ Director of Security Development Rob Sutrick says. Defining these policies and then enforcing them is what he refers to as “hardening” security.

    “You can go through the process of hardening your security, but how do you stay compliant with the policies defined?” Sutrick says. “How do you manage all of this when you have multiple systems? By automating these procedures, you can cut the time and resources it takes to make sure your systems stay in compliance. And that leads to nice cost savings.”

    Automated system security checks that can be accomplished with Policy Minder include:

    • Discover files with either the SUID or SGID bit set then monitor them for changes to their ownership, permissions or attributes
    • Discover when the sudoers file has been changed by using the checksum function
    • Ensure key system files are not world-writable
    • Check on services to find when one has been activated that shouldn’t have been
    • Ensure all user accounts have been created–and remain–with the appropriate attributes
    • Discover new admin accounts
    • Discover and manage inactive user accounts
    • Aid with auditor and compliance requirements by ensuring password rules are set appropriately

    System automation has always been the foundation of HelpSystems product lineup. The multi-platform aspect is where the company sees the best opportunity moving ahead.

    Integration efforts are under way at HelpSystems to align Web and mobile interfaces so that multi-platform products can be managed within a centralized console, sometimes referred to as “a single pane of glass.”

    The HelpSystems’ Robot Network and Robot Schedule admin automation products have moved into this integration phase and, according to Sutrick, PowerTech’s Network Security product will get the centralized console integration in the next several months.

    RELATED STORIES

    HelpSystems’ Application Integration Begins With GUI

    Ops Dashboard Gives Centralized View Into IBM i Performance

    PowerTech Adds Centralized Management for Exit Points Security

    Robot Job Scheduler Gets a Fresh New Look

    HelpSystems Adds SkyView Partners To Its Security Assets

    State of IBM i Security? Still Horrible, After All These Years

    PowerTech Puts a Pretty Face on Network Security

    HelpSystems Launches Mobile Initiatives, Acquires NAI for Workflow Automation

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Tags:

    Sponsored by
    WorksRight Software

    Do you need area code information?
    Do you need ZIP Code information?
    Do you need ZIP+4 information?
    Do you need city name information?
    Do you need county information?
    Do you need a nearest dealer locator system?

    We can HELP! We have affordable AS/400 software and data to do all of the above. Whether you need a simple city name retrieval system or a sophisticated CASS postal coding system, we have it for you!

    The ZIP/CITY system is based on 5-digit ZIP Codes. You can retrieve city names, state names, county names, area codes, time zones, latitude, longitude, and more just by knowing the ZIP Code. We supply information on all the latest area code changes. A nearest dealer locator function is also included. ZIP/CITY includes software, data, monthly updates, and unlimited support. The cost is $495 per year.

    PER/ZIP4 is a sophisticated CASS certified postal coding system for assigning ZIP Codes, ZIP+4, carrier route, and delivery point codes. PER/ZIP4 also provides county names and FIPS codes. PER/ZIP4 can be used interactively, in batch, and with callable programs. PER/ZIP4 includes software, data, monthly updates, and unlimited support. The cost is $3,900 for the first year, and $1,950 for renewal.

    Just call us and we’ll arrange for 30 days FREE use of either ZIP/CITY or PER/ZIP4.

    WorksRight Software, Inc.
    Phone: 601-856-8337
    Fax: 601-856-9432
    Email: software@worksright.com
    Website: www.worksright.com

    Share this:

    • Reddit
    • Facebook
    • LinkedIn
    • Twitter
    • Email

    Sponsored Links

    COMMON:  2016 Annual Meeting & Expo, May 15 - 18, in New Orleans! Great Power Systems event!
    System i Developer:  RPG & DB2 Summit - March 22-24 in Dallas. Check out the session grid!
    NGS:  Webinar: Getting from ? to ! with NGS-IQ - April 5. RSVP Now!

    IBM Kills Off Flex p260+ Node, Offers PureSystems Trade-In More Thoughts On A Hybrid System Of Systems

    Leave a Reply Cancel reply

Volume 26, Number 11 -- March 9, 2016
THIS ISSUE SPONSORED BY:

New Generation Software
Fresche Legacy
Manta Technologies
Chrono-Logic
Baseline Data Services

Table of Contents

  • No More Java 6 Support in Next Version of IBM i
  • IBM Bolsters Security in 5250 Emulators
  • Five Pitfalls of VTL Data Storage in IBM i Environments
  • PowerTech Goes Multi-Platform with Security Policy Software
  • IBM Shuffles IBM i CDC Function and Data Replication Tool

Content archive

  • The Four Hundred
  • Four Hundred Stuff
  • Four Hundred Guru

Recent Posts

  • Unattended IBM i Operations Continue Upward Climb
  • VS Code Is The Full Stack IDE For IBM i
  • Domino Runs on IBM i 7.5, But HCL Still Working on Power10
  • Four Hundred Monitor, March 6
  • IBM i PTF Guide, Volume 25, Number 11
  • You Ought To Be Committed
  • Thoroughly Modern: What You Need to Know About IBM i Security
  • Spring Brings Events To IBM i Community, And More
  • As I See It: AI-AI-O
  • IBM i PTF Guide, Volume 25, Number 10

Subscribe

To get news from IT Jungle sent to your inbox every week, subscribe to our newsletter.

Pages

  • About Us
  • Contact
  • Contributors
  • Four Hundred Monitor
  • IBM i PTF Guide
  • Media Kit
  • Subscribe

Search

Copyright © 2023 IT Jungle