Skip navigation
All Places > CA Mainframe Security > Blog
1 2 Previous Next

CA Mainframe Security

17 posts

CA World ’16 is where mainframe means business. Mainframe security and compliance sessions spanned from product updates - CA ACF2, CA Top Secret, CA Data Content Discovery, CA Compliance Event Manager, CA Cleanup – to mainframe hacking, compliance regulations, encryption, and vision and strategy.

 

Check out some of our favorite session replays, blogs, and presentations from the conference below.

 

Videos

 

Blogs and Articles

 

SlideShares

 

What type of content do you look for at CA World? Let us know in the comments section below.

WYMHM.jpgGood morning, CA Mainframe Security Community. Happy August! At the beginning of every month, I'm going to start pulling together "What You May Have Missed" -- a quick way to see some of the most interesting community content and activity from the previous month -- including events, replays, videos, ideas and questions.

 

I'm always open to feedback, so please let me know what you think. Is there something you want me to highlight more or less of? Just let me know!

 

ca-world-registration.jpg

CA World '16 Registration is Open

CA World is your opportunity to gain valuable, actionable knowledge and insights to help your company get an advantage in the application economy. See what is coming and how you can benefit from attending: https://communities.ca.com/thread/241758219

 

Upcoming Events

August 26: No-Fail Friday: Implementing Granular SecurityControls in CA ACF2

September 23: No-Fail Friday: Your Mainframe, Encryption, and Safe Harbor – What is Changing?

> See the full No-Fail Friday Schedule and Replays

 

Event Replays

Miss the 2016 Mainframe Virtual Summit?  Explore the On-Demand Virtual Summit

Discover Sensitive Data at Rest and in Motion with CA Data Content Discovery

 

Popular Answered Questions

ACF2 CICS Transaction Record / Field level security

RDT - System Predefined Resources - I need a list of pre-defined resources for V16. Does anyone know where I can find t…

DEFPROT - Is there a list of resource types that should NOT have DEFPROT?

why update calls to facility resource HWI.TARGET.netid.nau.imagename not being logged in acf2?

RO88932 - ALLOW JES(NOVERIFY) IN RELEASE 16 - need clarification

 

New Ideas -- Please Vote & Comment

TSS add optional parameter to suppress useless control characters (ASA)

CA-TSS - Create Utility to UNLOAD the RECOVERY File

Make Top Secret utility TSSAUDIT APF support PDS/E libraries 

Enhancement Request - CA TSS Web Admin message on successfull initialization

Uptime for CA Cleanup STC

> View all ideasCA Workload Automation

 

Other Great Content

CA ACF2 and CA Top Secret Education

Join us Every Month for "Mainframe Security No-Fail Fridays" 

Thank you for joining us last Friday for No-Fail Friday: Implementing granular security controls in CA Top Secret

 

You can watch the replay at the link above or right here in this post below. I've also attached the presentation for your review.

 

 

Remember: our "No-Fail Friday" series continues on the 4th Friday of every month: Join us Every Month for "Mainframe Security No-Fail Fridays"

We are excited to announce the general availability of the Advanced Authentication Mainframe feature for CA ACF2™ and CA Top Secret® at no additional cost to licensed customers. This initial release of the functionality supports use of RSA® SecurID® tokens as the second factor. Click here for more information on RSA SecurID.

 

CA Technologies continues to invest in mainframe data protection, in this case, the CA ACF2 and CA Top Secret offerings.

 

This continued investment is why CA now offers the option for two-factor authentication of mainframe users using RSA® SecurID® tokens. In this latest enhancement, the Advanced Authentication Mainframe feature for CA ACF2 and CA Top Secret gives customers an increased level of diligence for qualifying whether a user seeking access to z/OS is who they say they are. This is a recognized best practice that all are encouraged to adopt.

 

The authentication requires that the user enter the value provided by the RSA token, which is then checked against a synchronization server before authentication is granted. The value changes frequently, making it far more difficult for cyber criminals to gain access.

 

The Advanced Authentication Mainframe feature is designed to prevent data breaches and address customer compliance requirements by leveraging the existing enterprise security infrastructure, delivering compliant two-factor authentication for privileged users, or all users, on the mainframe, automatically updating controls, and addressing regulatory requirements for two-factor authentication.

 

More specifically, the Advanced Authentication Mainframe feature:

 

• Addresses NIST standards, supporting RSA SecurID hard and soft tokens for two-factor authentication to z/OS.

• Leverages CA Top Secret and CA ACF2 R16 installations along with current RSA SecurID v7.x or v8.x infrastructure for implementation.

• Enables a consistent two-factor authentication approach across mainframe and enterprise infrastructures, for those organizations using RSA SecurID.

• Requires any individual user, group of users, or all users to authenticate successfully with two factors before logging into z/OS applications.

• Maps user IDs between the mainframe and RSA Synchronization Server.

• Requires selected applications to use two-factor authentication and leverages all authentication options offered through RSA SecurID.

 

There has been a growing recognition in the industry and amongst security practitioners that mainframes are subject to attacks in ways never originally contemplated. Innovations such as adding the Advanced Authentication Mainframe feature to CA ACF2 and CA Top Secret is therefore critical to our customers and the wider mainframe ecosystem in which we participate.

 

For any questions regarding the CA ACF2 and CA Top Secret Advanced Authentication Mainframe feature, please contact John Pinkowski at John.Pinkowski@ca.com.

 

To learn more, read Mainframe General Manager Ashok Reddy’s latest Highlight blog: http://cainc.to/a4cUlF

CFS-header.jpg

Share your experience. Be the teacher. Enhance your resume.

 

CA World is the best opportunity to learn more about CA software and partner solutions that fuel digital transformations. And we want you to be a part of it.

 

The Call for Speakers is now open, and we look forward to receiving your amazing session ideas specifically stories about transformative projects, compelling use cases, and best practices that aim to educate and empower our customers in succeeding in the application economy.

 

We're looking for ideas covering CA Mainframe Security among other solution areas -- learn more and submit your topic today.

 

Make sure that you hear about all of the latest CA World '16 news by following the CA World '18 Community

no-fail-banner-large.jpg

New threats and looming regulations – there are no days off when it comes to security. Mainframe security solutions from CA Technologies are designed to work across the security lifecycle, from identity and access control to data protection to compliance.

 

To keep you up to date on what’s new, we’re hosting Mainframe Security No-Fail Fridays. On the fourth Friday of every month, you’ll hear about our latest updates, point-of-views, and the tips you need to control, find, classify, alert, inspect, audit and protect your mission-essential mainframe data.

 

 

Upcoming Mainframe Security No-Fail Friday 2017 Sessions:

March 31: Hide and Seek with CA Data Content Discovery 

April 28: TBD

May 26: TBD

June 23: TBD

 

Mainframe Security No-Fail Friday 2017 Replays:

January 27: 7 Mainframe Security Predictions for 2017 (Watch Replay)

February 24: Strengthening Mainframe Access Control with Multi-Factor Authentication (Watch Replay

 

Mainframe Security No-Fail Friday 2016 Replays:

January 29: Getting started with Data Classification in Data Content Discovery (Watch Replay)

February 26: What's new in CA Top Secret R16.0? (Watch Replay)

March 25: What's new in CA ACF2 R16.0? (Watch Replay)

April 22: Implementing granular security controls in CA Top Secret (Watch Replay)

May 27: From the Trenches of Advanced Authentication (Watch Replay)

June 24: Discover Sensitive Data at Rest and in Motion with CA Data Content Discovery (Watch Replay)

August 26: Implementing Granular SecurityControls in CA ACF2 (Watch Replay)

September 23: Your Mainframe, Encryption, and Safe Harbor – What is Changing? (Watch Replay)

December 2: Alert, Inspect and Protect with CA Compliance Event Manager!  ( Watch Replay)

The CA Mainframe R&D security teams are sponsoring 5 user groups for our set of spring, 2016 meetings.  The newly added 5th Pittsburgh, PA will be hosted at the CA Pittsburgh development facility. In addition to networking with other mainframe security professionals, you will also hear from customers that have upgraded to the new release (r16) for both CA ACF2 and CA Top Secret. The r16 releases for both products were released GA at CA World on November 16th, 2015.  Also, at each of the meetings, customer presentations on a current security challenge will be given.

 

There is no charge to attend any of the meetings and both breakfast and lunch will be provided.

 

Click on the following links to view additional details including agendas, address information, as well as local hotel accommodations (if needed).

 

Mid Atlantic Security User Group – This user group, established in Nov, 2013, is targeted for customers that reside in: NJ, DEL, Eastern PA, NY & CT areas.

Next meeting Location/Date: MCA Technologies Inc. Ewing, NJ – May 17th, 2016

Registration link: https://communities.ca.com/events/2670

 

DC Area Security User Group This user group, established in May, 2015 is targeted for customers that reside in: DC, VA, MD & South Central PA

Next meetingLocation/Date: CA Technologies Inc. Herndon, VA – May 19th, 2016

Registration link: https://communities.ca.com/events/2671

 

North Central Security User Group – This user group, established in March, 2014, is targeted for customers that reside in: IL, WIS, IND and Iowa.

Next meeting Location/Date: CA Technologies Inc. Lisle, Illinois – May 25th, 2016

Registration link: https://communities.ca.com/events/2687

 

South Central Security User Group This user group, established in Sept, 2014, is targeted for customers that reside in: Northeast TX, OK, AK and LS.

Next meeting Location/Date: Virtual WebEx Event only – May 25th, 2016

Registration link: Event To Be Created. Please check back. 

 

Pittsburgh Security User Group – This is the Inaugural meeting for this user group and is targeted for customers that reside in: West Virginia, Eastern OH and Western PA areas. Inaugural meeting
Location/Date: CA Technologies Inc. Pittsburgh, PA – June 8th, 2016 

Registration link: https://communities.ca.com/events/2677

 

mainframe-fridays.jpg2015 was a busy year for the Mainframe Security team at CA and it was great to meet many of you at CAW as well as regional workshops.

 

We hear you loud and clear – the conversation about Mainframe security is now more urgent and pertinent in your organizations and more than anything you all need the information and technical news to stay ahead.  So in the spirit of “no-fails’” (or avoiding those ‘oh-no’ moments that always seem to come up on Fridays!) let’s try something new --- Introducing Mainframe Security Monthly Friday Series.

 

Yes – you heard it right.  Need product updates or just need to catch up? Starting Friday January 29, you can tune in-to a webcast or product management office hour the 4 Friday of every month.  The idea is to make our ongoing interaction:

  • Simple
  • Predictable: add the time to your calendar now and you can be sure that there will be a topic pertinent to you or someone in your organization
  • Open: Is there a topic you really want us to cover? Do you want to hear tips or best practices from experts and/or your peers? Let us know and we will gauge the interest level to jointly develop the topic

 

The first webcast will preview the newest offering from the Mainframe Security and Compliance team with the topic “Getting Started with Data Classification using Data Content Discovery.” We will also be adding placeholders to the CA Mainframe Security community calendar for the rest of the series.

 

Of course Tech Tips and all the real-time conversation will all still be available as will our experts from pre-sales, solution engineering and support to handle questions.  

 

 

We hope you and your peers in Mainframe Security tune-in. Spread the word!

 

·         Predictable: Post the time to your calendar now and you can be sure that there will be topic pertinent to you or someone in your organization

Our CA ACF2 and CA Top Secret customers are some of the most loyal and passionate customers we have. Your participation in the future of our products is what makes them so special, and it’s a partnership we take very seriously. Your feedback and ideas help us maximize your investment with CA Technologies and take us to even higher levels of quality, customer experience, satisfaction and value.

That’s why we encourage you to let your voice be heard and take the brief CA ACF2 or CA Top Secret Customer Feedback survey. Your feedback will be key in helping us understand what is or isn’t working. The Mainframe Security leadership team will review in detail the overall results, and will build out action plans based on your feedback to further improve the overall experience and value you receive from your investment with us.

Click on one of these links to take the brief survey, which should take no more than 2-3 minutes to complete.

Thank you!

November 2015

To:

CA Top Secret for z/OS Customers

From:

The CA Technologies Top Secret for z/OS Product Team

Subject:

General Availability Announcement for CA Top Secret for z/OS Version 16.0


On behalf of CA Technologies, we appreciate your business and the opportunity to provide you with high-quality, innovative software and services.  As part of our ongoing commitment to customer success, we regularly release updated versions of our products. Today, we are pleased to announce that CA Top Secret for z/OS Version 16.0 is now available.

See the CA Top Secret for z/OS documentation for a Product Overview highlighting new features, benefits and enhancements for Version 16.0 (https://wiki.ca.com/topsecret).

You can download your copy of CA Top Secret for z/OS Version 16.0 from CA Support Online https://support.ca.com/. If you have any questions or require assistance contact CA Customer Care online at http://www.ca.com/us/customer-care.aspx where you can submit an online request using the Customer Care web form: https://communities.ca.com/web/guest/customercare. You can also call CA Customer Care at +1-800-225-5224 in North America or see http://www.ca.com/phone for the local number in your country.

We recommend that you use CA Chorus™ Software Manager (CA CSM) to download and install CA Top Secret for z/OS.  CA CSM is designed to automate product acquisition, installation, deployment, configuration and maintenance and remove SMP/E complexities. CA CSM helps save time and resources when compared with the manual steps used to perform these tasks. Please visit: https://support.ca.com/prodinfo/csm to learn more about the features provided by CA CSM.

Should you need any assistance in understanding these new features, or implementing this latest release, our CA Services experts can help.  For more information on CA Services and how you can leverage our expertise, please visitwww.ca.com/services.   To connect, learn and share with other customers, join and participate in our CA Mainframe Security Community at https://communities.ca.com/.

To review CA Support lifecycle policies, please review the CA Support Policy and Terms located at: https://support.ca.com/.


Thank you again for your business.

1.How long have you been at CA Chris_Williams ?

ChrisWilliams1.jpg

15 years, actual CA years, but 21 years when combined with my time at Sterling Software.

 

2.Are you a dedicated engineer as part of an enhanced support package?

No.

 

3.What was the career path that led you here?

I worked for Sterling Software, and in the year 2000, CA acquired Sterling Software for $4 billion, the biggest ever software company buyout at that time.

 

4.What product do you support?

All of CA’s Mainframe Security products including:

ACF2

Top Secret

Compliance Manager

LDAP Server

CA Cleanup for ACF2

CA Cleanup for RACF

CA Cleanup for Top Secret

Chorus Security

 

5.What keeps you at CA?

I like the work, the company, my colleagues and the friendly atmosphere.

 

 

6.What is your passion outside of work? What do you like to do?

I like wood working, cooking, dancing, eating out and being with my family.

The three wise men of Ditton Park.jpgBird Table 1.jpgLucy & Levi on a stool.jpg

 

 

7.What is your educational background?

I have A Levels and part of a degree, one day I may finish it!?  I also have professional qualifications related to my job.

 

8.How has support changed since you started?

Where do I start…in a nut-shell it is all about the customers and what they want, in an effort to provide the best possible service to them.  When I started in support, it was then about what support was able to do for the customer, regardless of if that was what the customer wanted!  It is very different now-a-days, and so very much better.  But, we still always have room for improvement!...  

 

9.Why should people be involved in the communities?

It makes everything more friendly, i.e. it puts ‘a face to a name’.  There are some great people and ideas on the communities and it offers a way to share these with colleagues and customers alike.

 

10.Why should customers read Knowledge Articles?

It may give them instant answers so they can carry on with what they were doing, rather than having to wait while a Case is investigated and answered.  It’s all about speed today, and delivering a world class service.  If Knowledge documents help that, then they are fulfilling a worthwhile role.

 

Meet the CA Support Engineers for other communites.

Follow the Support Engineer Here: Chris_Williams

For those coming to CA World '15 or planning to – now there’s even more mainframe content! Check out the new sessions in the catalog, including sessions led by Wells Fargo, millenia... and Zions Bank!

 

The CA Mainframe R&D security teams are sponsoring 4 user groups for our set of fall, 2015 meetings.  In addition to networking with other mainframe security professionals, you will also learn about the next new release (r16) for both CA ACF2 and CA Top Secret. The r16 releases for both products are targeted for GA by CA World on November 16th, 2015.  Also, at each of the meetings, customer presentations on a current security challenge will be given. There is no charge to attend any of the meetings and both Breakfast and Lunch will be provided.  Click on the following links to view additional details including agendas, address information, as well as local hotel accommodations (if needed).

 

 

Mid Atlantic Security User Group – This user group, established in Nov, 2013, is targeted for customers that reside in: NJ, DEL, Eastern PA, NY & CT areas.

Next meeting Location/Date: Morgan Stanley Inc. Manhattan, NY – October 6th, 2015

Registration link: https://communities.ca.com/events/2183

 

 

DC Area Security User Group This user group, established in May, 2015 is targeted for customers that reside in: DC, VA, MD & South Central PA 

Next meeting Location/Date: CA Technologies Inc. Herndon, VA – October 8th, 2015

Registration link: https://communities.ca.com/events/2184

 

 

North Central Security User Group – This user group, established in March, 2014, is targeted for customers that reside in: IL, WIS, IND and Iowa.

Next meeting Location/Date: CA Technologies Inc. Lisle, Illinois – October 14th, 2015

Registration link: https://communities.ca.com/events/2185

 

 

South Central Security User Group This user group, established in Sept, 2014, is targeted for customers that reside in: Northeast TX, OK, AK and LS.

Next meeting Location/Date: Changed to a WebEx only event – October 14th, 2015

Registration link: https://communities.ca.com/events/2187

Are you new to the CA Mainframe Security Community? If so, welcome -- I'm glad you found us!

 

My name is LennThompson and I am the Lead CA Community Manager supporting this community. Please feel free to reach out to me at any time if you have questions or need help with anything here.

 

To help you get started and get the most out of your time here on the community, we've put together this "Getting Started" guide.

 

Be sure to Update Your Profile

After logging in to the community site, you’ll see a global drop down with a silhouette icon to the left of the search bar (if you already have a picture uploaded, you’ll see your picture instead). Open the drop-down menu and click on “Edit Profile.”  From the edit page, you can upload a picture or two, add your contact information, select an avatar that will be displayed in any posts/comments you create, and control your privacy settings. You can also add some of your skills/expertise from your main profile page so that other members can find you and identify your areas of expertise.

 

This video will walk you through the steps of updating your profile: CA Community GO! Setting Up Your Profile.

 

Connect with People and Communities
Now is a great time to get connected with other people and places that interest you. Follow friends, colleagues, partners or even network with people you don't know yet.  If you are a new member of the communities, be on the lookout for our New Member Webcast Events which will be posted in the The Water Cooler Community. Another great place to visit is our Training community which has many how-to documents as well as tips and tricks for using the site.

 

Create a Stream

Streams are a great way to follow specific content. The default streams on the CA Communities homepage include an Activity Stream (all activity on all communities) and a Connections Stream (all activity from people/places you are following). There is also an option to create a custom stream where you can select certain people or places that you’d like to follow more closely. Click “+New Stream” from the navigation panel on the left side of the Home page to begin creating your custom stream. Once you create that Stream, you can default the stream as your homepage by clicking on the gear symbol, and selecting “Set as Home.” Streams are also a great tool for using the Jive Mobile App.

 

Check out this doc for more info on how to create a stream: Creating Custom Streams.

 

Important: Get emails for the content you are following

Click the down arrow next to your Avatar (top right of page) and click “Preferences.” Click the "On" button next to your custom streams or inbox in order to begin receiving email updates. You can also elect to receive a community digest which will provide you with periodic updates on places and content you are following. To do so, click on the frequency you'd like next to the "Community Digest" option in your preferences. More info on updating your preferences can be found here: Preferences.

 

Ask a Question or Answer a Question -- and Follow, Like, Share and Bookmark

Now that you are set up, visit the CA Mainframe Security content area to review questions posted by others (use the filters to find answered vs unanswered questions), or click on the pencil icon (top right) on the top grey banner to start your own discussion. When creating content, don't forget to add a product category. You can select a category by checking the box just above the "submit" button after you've selected the community. Adding a product category allows experts and other users to find your content more easily, and increases your chances of getting a response.

 

Submit and/or Vote on an Idea

You can access all Ideas by going to the “Content” page and then selecting the “Ideas” tab.  Open a specific idea to review the details, add a comment or vote it up or down. Your votes will help Product Management to determine how popular the idea is when deciding whether to implement it into the product. Interested in submitting an idea?

 

Watch this video for an overview on how to create one: Create and Submit an Idea within CA Communities

 

Download and use the Jive Mobile App
There is a mobile app that can be downloaded on all iOS or Android devices that will enable you to access the CA Communities right from your phone. Click here to learn more.

 

That's it -- I hope you find this useful. Again, if you have any questions or need any help, just let us know!

 

Regards,

LennThompson

Your CA Community Manager

banner.jpg

Good morning CA Mainframe Security Community!

 

CA World '15 will take place November 16-20 in Las Vegas and while we won't officially release pricing information until registration opens (planned for next week), we leaked special pricing for CA Community members yesterday: CA World '15 Pricing and Discounts for CA Community Members

 

Briefly, the early bird rate (register before September 18) is $1,295 -- $700 off the regular $1,995 price -- and if you register by September 18 you also receive a free complimentary pass so you can bring a colleague with you! (Some exclusions do apply so please check the CA World website next week).

 

For CA World '15, we've added 50% more Pre-Conference education classes to help you get the most out of your CA investments as well as hands-on sessions on DevOps, Security, Management Cloud and our Mobile-to-Mainframe platforms.

 

Get the details about the special community offer here: CA World '15 Pricing and Discounts for CA Community Members

 

And make sure that you're following the CA World '15 Community to get all the latest news and updates!