Mainframe Optimization and Modernization CA Chorus for Security and Compliance Management Deep Dive Maddalena Tosoni Principal Engineering Services Architect
CA Chorus Recap
Improve Staff Efficiency CA Chorus Vision Object-oriented workspace, with a new discipline-based interaction model that incorporates rich features and data visualization and leverages CA Technologies portfolio of products as a single bank of features and functions CA Mainframe Chorus 6 Core Disciplines Functional Components CCS Mainframe Technology Stack DB2 Database Management Security /Compliance Management Storage Management Infrastructure Management Workload Management Systems Management Datacom Database Management IDMS Database Management IMS Database Management Operations Management Base Common Services Mainframe WS Common Services Disciplinebased Collaboration Rich Visualization Knowledge Management Process Automation 3 Copyright 2013 CA. All rights reserved.
CA Chorus Enhancing Mainframe Productivity No more same old thing. CA Chorus Changes Everything A new and fundamentally different user interaction model Based on how people do their jobs, not how they use specific products Provides rich features and data visualization in a web-based workspace Not just a bunch of disconnected GUIs True integration of products, process, and data 4 Copyright 2013 CA. All rights reserved.
CA Chorus for Security and Compliance Management 5 Copyright 2011 CA. All rights reserved. CA confidential. Covered by NDA. No unauthorized copying or distribution permitted. All trademarks, trade names, service marks and logos referenced herein belong to their respective companies.
Usage and Scenarios
Compliance and Reporting Administering compliance policy Reporting through the Investigator and Saved Queries 7 Copyright 2013 CA. All rights reserved.
Compliance and Reporting Administering Compliance Policy Business Need: I need to be notified immediately when an ID is given security privileges, so that I can make sure it was not done by mistake and that no accidental damage can occur. Business Value: 1. Decreases response time 2. Increases accuracy 3. Helps to manage compliance and audit requirements 8 Copyright 2013 CA. All rights reserved.
Compliance and Reporting Administering Compliance Policy 9 Copyright 2013 CA. All rights reserved.
Compliance and Reporting Reporting through the Investigator and Saved Queries Business Need: I need to provide human readable reports for compliance and attestation requirements. Business Value: 1. Decreases preparation time for compliance and audit 2. Reduces errors in report preparation and review 3. Helps to manage compliance and audit requirements 10 Copyright 2013 CA. All rights reserved.
Compliance and Reporting Reporting through the Investigator and Saved Queries 11 Copyright 2013 CA. All rights reserved.
Administration Command Manager Access Simulation Web Administration Editing users in the Investigator 12 Copyright 2013 CA. All rights reserved.
Administration Command Manager and Access Simulation Business Need: As an experienced security administrator, I need Chorus to provide benefits to me as well as to novices. Business Value: 1. Decreases response time 2. Increases accuracy 3. Helps to manage compliance and audit requirements 13 Copyright 2013 CA. All rights reserved.
Administration Command Manager 14 Copyright 2013 CA. All rights reserved.
Administration Access Simulation 15 Copyright 2013 CA. All rights reserved.
Administration Web Administration Business Need: I need to be able to administer security without knowing all the commands by heart. Business Value: 1. Decreases response time 2. Increases accuracy 3. Helps to manage compliance and audit requirements 16 Copyright 2013 CA. All rights reserved.
Administration Web Administration 17 Copyright 2013 CA. All rights reserved.
Administration Editing Users in the Investigator 18 Copyright 2013 CA. All rights reserved.
Monitoring Performance and Alerts Metrics Panel Dashboards and Graphs on them Time Series 19 Copyright 2013 CA. All rights reserved.
Monitoring Performance and Alerts Metrics Panel, Dashboards and Times Series Graphs Business Need: I need Chorus to provide me a quick, visual status of how my security systems are running. Business Value: 1. Decreases response time 2. Increases accuracy 3. Helps to manage compliance and audit requirements 20 Copyright 2013 CA. All rights reserved.
Monitoring Performance and Alerts Metrics Panel 21 Copyright 2013 CA. All rights reserved.
Monitoring Performance and Alerts Dashboards and Graphs on Them 22 Copyright 2013 CA. All rights reserved.
Monitoring Performance and Alerts Time Series 23 Copyright 2013 CA. All rights reserved.
Proof Points
Business Value CA Technologies can create custom ROI Business Cases upon request to assist our customers in identifying the potential quantifiable value CA solutions can bring to their businesses. * * The impact ranges shown above are estimations derived from the analysis of benchmark data which is a composite of data derived from industry analyst published information, interviews with subject matter experts and experiential data from prior projective analyses with CA Technologies customers. These values are not a guarantee of achievable results and will vary depending upon your current infrastructure, people and processes,as well as the appropriate, effective implementation, adoption, and use of the CA Technologies solution. 25 Copyright 2013 CA. All rights reserved.
Large U.S. Bank Selects CA Mainframe Chorus Compliance Discipline This Large Bank is known in more than 50 countries and it has more than 130 million loyal customers. This bank is especially safe and stable, as it belongs to one of the largest global multi-sector corporations. provides the full spectrum of financial services. Challenge Provide assurances to auditors & management that effective controls are in place Proactive, real-time approach to shorten riskand threat-management timelines Cost-effective, automated way to monitor, report and investigate Solution CA Chorus for Security and Compliance Management Consolidates information about mainframe security environments into a single browser-based view Makes easy the tedious and manual reporting processes Why CA Chorus Transformed IT: Helps security specialists simplify and streamline security and compliance administration Reduces the amount of time, experience, and effort required to monitor and report on security and compliance Assists organizations in achieving and continuously maintaining compliance with government & industry standards
Session Summary
CA Chorus for Security and Compliance Management Summary CA Chorus provides a revolutionary user interface based on how people do their jobs, not on specific products Modern, discipline-based interaction model Embodies next-generation management For management of DB2 for z/os Database Management Security and Compliance Storage Infrastructure Management for Networks and Systems In the near future, we will develop additional disciplines that will transform traditional product user interfaces in similar ways 28 Copyright 2013 CA. All rights reserved.
FOR INFORMATION PURPOSES ONLY Terms of this presentation Copyright 2013 CA. All rights reserved. IBM, System z, zenterprise, zseries, z/os, z/vm, RACF, CICS, IMS and DB2 are trademarks of International Business Machines Corporation in the United States, other countries, or both. Linux is the registered trademark of Linus Torvalds in the U.S. and other countries. All trademarks, trade names, service marks and logos referenced herein belong to their respective companies. This presentation was based on current information and resource allocations as of April 2013 and is subject to change or withdrawal by CA at any time without notice. Notwithstanding anything in this presentation to the contrary, this presentation shall not serve to (i) affect the rights and/or obligations of CA or its licensees under any existing or future written license agreement or services agreement relating to any CA software product; or (ii) amend any product documentation or specifications for any CA software product. The development, release and timing of any features or functionality described in this presentation remain at CA s sole discretion. Notwithstanding anything in this presentation to the contrary, upon the general availability of any future CA product release referenced in this presentation, CA will make such release available (i) for sale to new licensees of such product; and (ii) to existing licensees of such product on a when and if-available basis as part of CA maintenance and support, and in the form of a regularly scheduled major product release. Such releases may be made available to current licensees of such product who are current subscribers to CA maintenance and support on a when and if-available basis. In the event of a conflict between the terms of this paragraph and any other information contained in this presentation, the terms of this paragraph shall govern. Certain information in this presentation may outline CA s general product direction. All information in this presentation isfor your informational purposes only and may not be incorporated into any contract. CA assumes no responsibility for the accuracy or completeness of the information. To the extent permitted by applicable law, CA provides this presentation as is without warranty of any kind, including without limitation, any implied warranties or merchantability, fitness for a particular purpose, or non-infringement. In no event will CA be liable for any loss or damage, direct or indirect, from the use of this document, including, without limitation, lost profits, lost investment, business interruption, goodwill, or lost data, even if CA is expressly advised in advance of the possibility of such damages. CA confidential and proprietary. No unauthorized copying or distribution permitted. CA does not provide legal advice. Neither this document nor any CA software product referenced herein shall serve as a substitute for your compliance with any laws (including but not limited to any act, statute, regulation, rule, directive, policy, standard, guideline, measure, requirement, administrative order, executive order, etc. (collectively, Laws )) referenced in this document. You should consult with competent legal counsel regarding any Laws referenced herein. 29
Q&A