File Integrity Monitoring (FIM) within z/OS Environments

File Integrity Monitoring (FIM) is no longer just a necessity for Windows/UNIX. According to the new Payment Card Industry Data Security Standard (PCI DSS 3.1) you need a FIM process for your mainframe too. Requirements 10.5 states: “Use file-integrity monitoring or change-detection software on logs to ensure that existing log data cannot be changed without generating alerts.” The requirement does not stipulate that this is for Windows/UNIX only.