If your organization already has a SIEM system, CorreLog zDefender™ Visualizer for z/OS leverages your existing technology. The product can be inserted between the CorreLog zDefender™ for z/OS program (running on the mainframe) and any SIEM system, including another copy of CorreLog Server.
Although a SIEM system is not required to fully utilize the zDefender™ Visualizer for z/OS, the program can provide useful visibility to z/OS messages related to mainframe security, and act as a general-purpose collector and SIEM syslog forwarder in a larger enterprise security management strategy.
CorreLog zDefender™ Visualizer for z/OS provides critical functions that bring your live mainframe data into your existing SIEM system, expanding your visibility to an operating system previously not available in the SIEM.
- Mainframe Message Search. Mainframe messages are collected by zDefender™ Visualizer and indexed for rapid search of z/OS data.
- z/OS Dashboards. Data can be depicted using a suite of pre-configured dashboards that show mainframe activity related to system-wide security such as RACF, ACF2, Top Secret, CICS, DB2 accesses, DFSMS and other data used by a SIEM to determine the health of your network security.
- Correlation Rules. The software comes with a out-of-box correlation rules that were designed with compliance in mind – PCI DSS, HIPAA, SOX, IRS Pub. 1075, GLBA and many other standards.
CorreLog is pleased to support proof-of-concepts, and provide technology proposals and demonstrations upon request.
For more information on CorreLog zDefender™ Visualizer for z/OS, please contact us.