PCI Assessment and Remediation Services for
z/OS Security Server (RACF®)
The Vanguard RACF PCI Assessment offering provides you with:
- An initial RACF assessment for each RACF database
- A proprietary workbook that includes each reviewed requirement
- Documentation that supports the requirement
- Sample remediation commands, where applicable
- Reference material to assist auditors with guidance in understanding each RACF control
- Education of a member of your team to maintain the RACF compliance workbook
- Access to the Vanguard professional services group for RACF PCI guidance
- Recommendations for reducing PCI related risks based on Vanguard assessments, customer feedback
- Assurance that all applicable PCI requirements are being addressed by RACF
- Assurance that information security policies and procedures are in place for applicable requirements
- Assurance that the right compliance tools are in place and are being properly used
The PCI standard challenges security administrators with a unique set of requirements that touch many areas of your organization. Corporate policies, procedures, security management, network infrastructure, protection schemes and software design all come under critical review in order to achieve compliance with the standard.
The Payment Card Industry (PCI) Data Security Standard (DSS) mandates that merchants and service providers who store, process and transmit cardholder data are employing effective security practices to protect customer data. With mainframes playing a central role in the world’s electronic commerce infrastructure, the significance of maintaining strong RACF controls should not be underestimated.
PCI Resources
PCI Security Standards Council
https://www.pcisecuritystandards.org/
PCI Data Security Standard
https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml
