CorreLog for PCI DSS Compliance

The Payment Card Industry Data Security Standard (PCI DSS) requires that all event data must be retained and accessible for forensic analysis for a period of at least three months online and one year in the archive (10.7) It also requires you to "alert personnel to unauthorized modification of critical system files, configuration files, or content files at least weekly." This CorreLog whitepaper details how to meet these requirements in your IBM z/OS environment through File Integrity Monitoring (FIM) and audit trail monitoring, along with other guidelines that will help ensure the security of your mainframe data in real time and avoid penalties.