Presentation
TECH_180s2 Mainframe Under Siege: Real-Time Threat Interception and Automated Recovery
DescriptionMainframes are not impenetrable. Recent healthcare and government breaches prove that traditional security assumptions leave critical vulnerabilities exposed.
This session reveals why conventional mainframe security fails and demonstrates modern defensive capabilities that address these gaps:
Current vulnerabilities:
- RACF/ACF2/TSS bypass risks used in recent attacks
- Insider threats with legitimate credentials
- Ransomware targeting mainframe data
- Reconnaissance activities going undetected
During the session we will review modern defense techniques such as behavioral anomalies that precede insider attacks, integrity monitoring to reveal ransomware insertion, mainframe network awareness to prevent data exfiltration, and many other concepts
An optional attack simulation, showing immediate interception and damage control will illustrate how modern tools can freeze perpetrators in their tracks, providing valuable time for support staff to respond correctly.
The practical insights, utilizing existing and new tools, will strengthen your mainframe security posture in ways that were never possible before.
This session reveals why conventional mainframe security fails and demonstrates modern defensive capabilities that address these gaps:
Current vulnerabilities:
- RACF/ACF2/TSS bypass risks used in recent attacks
- Insider threats with legitimate credentials
- Ransomware targeting mainframe data
- Reconnaissance activities going undetected
During the session we will review modern defense techniques such as behavioral anomalies that precede insider attacks, integrity monitoring to reveal ransomware insertion, mainframe network awareness to prevent data exfiltration, and many other concepts
An optional attack simulation, showing immediate interception and damage control will illustrate how modern tools can freeze perpetrators in their tracks, providing valuable time for support staff to respond correctly.
The practical insights, utilizing existing and new tools, will strengthen your mainframe security posture in ways that were never possible before.
Event Type
Technical Session
TimeMonday, February 231:15pm - 2:15pm EST
LocationSalon 23
Business Continuity/Disaster Recovery
Enterprise Architecture
Network Security and Management
Security and Compliance
Systems Management and Automation
Application Development
Best Practices Session
All Audiences
Security Warrior