Although the IBM i is one of the most securable servers available, it doesn’t come that way from the factory. PowerTech’s State of IBM i Security study has shown that most organizations still fail to take adequate steps to secure their data or the server.

PowerTech has compiled a list of the ten most common and important IBM i security risks. We will share them with you to help you identify your own vulnerabilities and prioritize their correction. Attend this informative Webinar to gain insight into the top ten security vulnerabilities and recommendations of how to fix them.

Attendees are eligible to receive a FREE Compliance Assessment.

Presenters
Main Presenter: Robin Tatam, PowerTech
Co-Presenter: Jill Martin, PowerTech

Wednesday, August 25, 2010
10 a.m. Central Time (15:00 GMT)
Check our chart for your local time >

Cost
Free of charge

Registration
To register, please visit our WebEx site.

Speaker Bios

Robin Tatam is the Director of Security Technologies for PowerTech, a leading provider of security solutions for IBM i. A frequent speaker on security topics, he co-authored the RedbookIBM System i Security: Protecting i5/OS Data with Encryption. Robin can be reached by e-mail at robin.tatam@powertech.com.

Jill Martin is Product Support Manager for PowerTech and brings a strong System i background to any security discussion. Jill has worked in a number of roles in the industry, including technical trainer, sales account manager, and most recently as a key member of the security team. Contact Jill at jill.martin@powertech.com.

Everyone knows that security is important, but getting started on the road to compliance can be confusing and intimidating. Understanding common vulnerabilities helps you focus your attention and resources on the areas that need the most help.

We all want “best-practice” security, but what are top organizations doing to achieve and maintain it? Attend this session to learn the details about how to develop the seven habits that are part of daily life for secure organizations.

You’ll learn how to:

• Break the Ostrich Syndrome
• Develop a Security Policy
• Assess Current Standing
• Perform Security Event Logging and Review
• Use “Best of Breed” Technologies
• Monitor for Ongoing Compliance
• Plan For The Future

This session examines what each of these habits means to the IBM i, and helps you make sure that you don’t become the next security statistic.

Attendees are eligible to receive a FREE Compliance Assessment.

Presenters
Main Presenter: Robin Tatam, PowerTech
Co-Presenter: Jill Martin, PowerTech

Wednesday, August 11, 2010
10 a.m. Central Time (15:00 GMT)
Check our chart for your local time >

Cost
Free of charge

Registration
To register, please visit our WebEx site.

Speaker Bios

Robin Tatam is the Director of Security Technologies for PowerTech, a leading provider of security solutions for IBM i. A frequent speaker on security topics, he co-authored the RedbookIBM System i Security: Protecting i5/OS Data with Encryption. Robin can be reached by e-mail at robin.tatam@powertech.com.

Jill Martin is Product Support Manager for PowerTech and brings a strong System i background to any security discussion. Jill has worked in a number of roles in the industry, including technical trainer, sales account manager, and most recently as a key member of the security team. Contact Jill at jill.martin@powertech.com.

PowerTech’s annual “State of System i Security” study shows that the vast majority of organizations still rely on menu security to protect their data. Unfortunately, users have access to numerous interfaces that completely bypass these controls, and make it easy to view, update, and even delete data in the database. If you need to comply with any type of regulation, or if you simply want to ensure the integrity of your application data, learning about the openness of these interfaces is critical.

Attend this informative Webinar to learn more about IBM i security and how to close the “backdoors” not covered by traditional menu security schemes. You’ll also learn how to implement policies that restrict access to only those users who need it.

Attendees are eligible to receive a FREE compliance assessment.

Featuring a live Network Security demo.

Presenters
Main Presenter: Robin Tatam, PowerTech
Co-Presenter: Jill Martin, PowerTech

Wednesday, January 27, 2010
10 a.m. Central Standard Time (16:00 GMT)
Check our chart for your local time >

Cost
Free of charge

Registration
To register, please visit our WebEx site.

Speaker Bios
Robin Tatam is the Director of Security Technologies for PowerTech, a leading provider of security solutions for the System i. As a frequent speaker on security topics, he was also co-author of the Redbook IBM System i Security: Protecting i5/OS Data with Encryption. Robin can be reached by email at robin.tatam@powertech.com.

Jill Martin is Technical Services Manager with the PowerTech Group, and brings a strong IBM i background to a security discussion. Jill has worked in a number of roles in the industry including a Help/Systems technical trainer, sales account manager, and most recently as a key member of the security team. Contact Jill at jill.martin@powertech.com.

Security terms like “data breach” are probably known to most households and businesses, but many of us don’t realize just how prevalent the problem really is. We’ve become accustomed to news reports of large data exposures, and to receiving letters in the mail indicating that our private information may have been compromised.

Just as with most things, we slowly become desensitized to recurring news of data loss events, and often choose to accept those events as an inevitable part of life that we have no control over. We only start to pay attention when we see the effect of a breach impacting our personal finances, our jobs, or an organization that we do business with.

Privacy Rights Clearinghouse (PRC) is a nonprofit consumer information and advocacy organization, and a source that I frequently quote when speaking to groups about the topic of information breaches and data leak protection. PRC maintains a chronology of data incidents involving private or confidential data, and it certainly makes for interesting reading.

October was another busy month for breach activity. While you probably didn’t hear about these events in the mainstream media, as of this writing PRC lists no fewer than 12 separate events of compromised information. Some of the data compromised included U.S. Social Security numbers and patient medical information. Breached organizations this month include the U.S. Army, BlueCross BlueShield, and several education and medical institutions. The breaches occurred through a number of common data leak conduits, including discarded documents, lost USB thumb drives, and stolen laptops. One event was the result of an incorrectly disposed of disk unit that contained 76 million (yes, million!) records on US military veterans.

So with this many data breaches occurring in any given month, it still amazes me that IT teams even now have to sell management on the value of securing data assets. When we conduct compliance assessment scans, we still come across the “it will never happen to us!” mentality. We also hear “it’s okay since my users don’t know how to do that,” which is almost as bad. Trust me when I say: It can happen to you, and it only takes one user who knows how to do it to bring the whole organization crashing down.

If all of this breach information still isn’t enough to spur you to move forward with your own security initiative, then perhaps you’ll be interested in this week’s news about the $275,000 fine leveled against ChoicePoint, one of the nations largest data brokers (http://www.ftc.gov/opa/2009/10/choicepoint.shtm).

For more information on PRC, or to view their continuously expanding list of data incidents, visit their Web site at www.privacyrights.org.