Why CSOs should take mainframe security more seriously

Do companies take mainframe security as seriously as the rest of their IT infrastructure?

Though they are old and unsexy, mainframes still run the world. The vast majority of Fortune 500 companies plus banks, insurers, retailers, hotels, airlines, healthcare institutions and governments use mainframes to process massive numbers of transactions daily. Without them, much of the world as we know it would probably crawl to a standstill.

But, considering the critical nature of these systems, do companies take mainframe security as seriously as the rest of their IT infrastructure?

The myth of ‘unhackable’ mainframes needs to be put to bed, and CSOs need to secure them the same as any other computer.

 

The myths of mainframe security

The enduring myth of the mainframe is that it’s completely secure. In movies it’s a byword for hacking the unhackable. The encryption features of IBM’s z14 saw the mainframe hailed as more secure than ever.  But while most security experts will acknowledge it’s more secure than your average platform, nothing is completely impenetrable.

“The majority of organizations still believe the operating system cannot be breached because of the architecture and what IBM continues to preach,” says Ray Overby, founder of mainframe security consultancy Key Resources.

To continue reading this article register now