TrustCC, Information Security Consulting & Compliance

• Home
• Industries
  • Financial Services
  • Healthcare
  • Retail
  • Government
  • Service Providers
  • Public Companies
  • Higher Education
  • Professional Services
• Solutions & Services
  • IT Compliance
    • GLBA Compliance
    • HIPAA Compliance
    • SOX 404 Compliance
    • PCI DSS Security Preparedness
    • TG-3 PIN Security
  • IT Audit
    • General Controls Audit
    • FFIEC Audit
  • IT Security Testing
    • Comprehensive Security Assessment
    • Penetration Testing
    • Mainframe Security
  • IT Policy and Program
    • Information Security Risk Assessment
      
    • Incident Response
    • IT Security and Compliance Training
    • Business Continuity Planning
    • Policy and Procedure Development
• Resources
  • Articles
  • Checklists and Samples
  • Presentation Materials
  • Case Studies
    • Penetration Testing Case Study
    • Social Engineering and Phishing Case Study
    • Outsourced IT Audit Case Study
    • Policy Development Case Study
  • Partners
  • Useful Links
• Company Info
  • The TrustCC Advantage
  • Management Team
  • Security/Audit Vendor Due Diligence
  • TrustCC's Internal Controls
  • Client Demographics
  • Code of Ethics
  • Job Openings
  • Contact Us
• News & Events
  • News & Press
  • Seminars and Training

Mainframe Security Audit and Assessment

Does your company rely on mainframe transaction processing? Do you have auditors or security professionals with the required experience to evaluate your controls? Is regulatory scrutiny requiring you to certify the effectiveness of your mainframe controls?

Experienced mainframe security and audit professionals are increasingly scarce. Fortunately TrustCC has personnel with over 20 years experience designing, configuring and deploying mainframe (zOS and MVS) security controls using RACF, CA-Top Secret and CA-Examine.

TrustCC is also competent performing security analysis and auditing of AS/400 environments.

Designed For:

• Organizations that rely on critical mainframe based applications and that seek assurance that operating system and security packages are configured in a secure and well controlled manner.
• Organizations in need of a Mainframe Security Audit or Assessment.

What We Typically Provide:

• Risk assessment and planning to determine appropriate audit scope.
• Evaluation of operating systems controls and configuration.
• Evaluation of RACF or Top-Secret installation, configuration, administration and monitoring.
• User access administration and review.
• Evaluation of key application controls whether protected through an interface to Top Secret/RACF or an application security sub-system. Audit work-papers in accordance with your standards.

How You Benefit:

• Know the risks associated with your zOS and AS/400 operating systems configuration.
• Design and deploy zOS or AS/400 security improvements.
• Supplement existing staff expertise with additional mainframe security and audit experience.
• Perform testing of key controls over financial reporting in support of SOX controls testing.