hpe nonstop xygate product updates
If you can't read please download the document
DESCRIPTION
HPE and XYPRO partnership XYPRO - providing solutions for NonStop since 1983 Offers comprehensive suite of security and compliance solutions for NonStop, Authentication and access control Audits Compliance monitoring Data Security 2013 AllianceOne partner of the year in the security categoryTRANSCRIPT
HPE NonStop XYGATE Product Updates
Barry Forbes HPE and XYPRO partnership
XYPRO - providing solutions for NonStop since 1983 Offers
comprehensive suite of security and compliance solutions for
NonStop, Authentication and access control Audits Compliance
monitoring Data Security 2013 AllianceOne partner of the year in
the security category XYPRO solutions in HPE price-book
Authentication and AccessControl Compliance Monitoring andActivity
Auditing Data Security XYGATE User Authentication* XYGATE Access
Control XYGATE Compliance PRO XYGATE Merged Audit* BASE24 plug-in
BASE24-eps plug-in AJB RTS plug-in HLR plug-in XYGATE Data
Protection New * Included in the OS Security bundle (J-Series) or
the OS (L-Series) Global security trends and relevance to the
NonStop
XYPROTechnology All Rights Reserved Security breaches are still
making news
Experian breach exposes 15million T-Mobile customer data(October
2015) 4.6 million Scottrade accountsbreached (October 2015) 100
banks hit by $1 billion cyber attack(February 2015) XYPROTechnology
All Rights Reserved Security breaches are still making news
80 million member records stolen fromAnthem BlueCross Blue
Shield(February2015) U.S. government breacheddata for million
employees stolen (July 2015) 30 million customers account info
stolen fromAshley Madison(August 2015) XYPROTechnology All Rights
Reserved Recent Study: 2015 Cost of Cyber Crime: Global
Study sponsored by HPE and independently conducted byPonemon
Institute Study at a glance: 252 companies in 7 countries 2,128
interviews with company personnel 1,928 total attacks to measure
cost $7.7 million is the average annualized cost 1.9% net increase
over the past year 15% average ROI for 7 security technologies
XYPROTechnology All Rights Reserved Costs of cyber crime vary by
industry
Financial Services and Utilities &Energy have the highest
cybercrime cost by sector NonStop relevance NonStop systems are in
high threatverticals NonStop customers face high costsfor security
breaches NonStop systems need very strongsecurity Ponemon Institute
2015 Cost of Cyber Crime Study: Global XYPROTechnology All Rights
Reserved Simple attack methods still common
Viruses and malware mostfrequent type of attack Human aspect,
including maliciousinsiders, still prevalent in attacks NonStop
relevance Basic security principles are stillimportant Ponemon
Institute 2015 Cost of Cyber Crime Study: Global XYPROTechnology
All Rights Reserved Malicious insider attacks most expensive
Even though less frequent, cybercrime from malicious insiders
hashighest cost per incident NonStop relevance Ensure strong
authentication Enforce policy of minimum requiredaccess Ensure no
shared super-user accounts Keep track of what users are doing
oncritical systems with key logging Integrate NonStop with SIEM
Ponemon Institute 2015 Cost of Cyber Crime Study: Global
XYPROTechnology All Rights Reserved Malicious insider attacks take
longest to resolve
Average time to resolve cyber crimeattacks from insiders is over 54
days NonStop relevance Ensure individual accountability (noshared
Super user IDs) Enforce policy of minimum requiredaccess Keep track
of what users are doingon critical systems with key logging Log and
audit all NonStop securityevents Integrate NonStop with SIEM
Ponemon Institute 2015 Cost of Cyber Crime Study: Global
XYPROTechnology All Rights Reserved Most companies dont have strong
security solutions
Only 50% have access management Fewer than 50% of companies
usesecurity intelligence, dataprotection or other critical
securitysolutions NonStop relevance Dont assume NonStop security
isdeployed Still a likely need to increaseprotection Ponemon
Institute 2015 Cost of Cyber Crime Study: Global XYPROTechnology
All Rights Reserved There is strong ROI for security
solutions
Security solutions have 15%average ROI NonStop relevance Security
solutions for NonStop areworth the investment Ponemon Institute
2015 Cost of Cyber Crime Study: Global XYPROTechnology All Rights
Reserved Overall implications for NonStop
Cyber crime is on the rise Key NonStop vertical industries are top
targets of cyber attacks Customer info and financial data are
primary targets Basic security fundamentals are still important
Investment in security solutions has a strong ROI (and can save
your job!) XYPROTechnology All Rights Reserved XYPRO Technology All
Rights Reserved
Securing the NonStop XYPROTechnology All Rights Reserved PCI DSS
compliance is a major security trend
PCI compliance is a critical requirement for many NonStop customers
XYPROTechnology All Rights Reserved A framework for NonStop
security
While not applicable to all companies, PCI is useful for
considering a framework for NonStop security Securing the NonStop
Addressing the Fundamentals
Requirement Implement strong access controls Controlling access
who, from where, when and how Minimum privilege Role-based
authorization Individual accountability Activities audit Solution -
XYGATE Access Control (XAC) Highly-granular access control
Role-based access control Eliminate shared IDs Keystroke logging
Audit privileged user activity An International Bank
Mission-critical HP Nonstop for BESS commercial payments Enable
full command control inside menu based interface Achieved high
security while replacing legacy tool Customer example
XYPROTechnology All Rights Reserved Addressing the
Fundamentals
Requirement Protect sensitive data Strong encryption without
changes to data structures High-performance tokenization Support
for multiple data types Runs natively on NonStop Multi-platform
support Solution - XYGATE Data Protection (XDP) Data protection
optimized for NonStop Format-preserving encryption Secure Stateless
tokenization Intercept library enables data protection
withoutchanges to application Enterprise-wide encryption
andtokenization solutions A Global Retail Payments Provider
Mission-critical HP Nonstop BASE24 system and z/OS systems PCI
compliance and scope reduction Competitive advantage with tokens
deliverable to retail clients and used in batch settlement Customer
example XYPROTechnology All Rights Reserved Addressing the
Fundamentals
Requirement - Enforce strong authentication before access
Appropriate authentication methods Multi-factor authentication
Integration with enterprise systems Single sign-on Solution -
XYGATE User Authentication (XUA) Already part of your Nonstop
system! LDAP integration Support for RSA SecurID Flexible
authentication processes IP, port, time management A National
Telecom Company Mission-critical HP Nonstop Needed PCI and
corporate policy compliance Enterprise requirement for RADIUS
authentication Enabled RADIUS support for legacy Pathway users as
well as all Guardian/OSS users. Customer example XYPROTechnology
All Rights Reserved Addressing the Fundamentals
Requirement Log and audit all NonStop security events Activity
monitoring and logging Reconstruction of cases Multi-source audit
monitoring Compliance reporting Solution - XYGATE Merged Audit
(XMA) Already part of your Nonstop system! Consolidate and
normalize multiple sources of log data Integration with SIEMs(HP
ArcSight, RSA Envision and others) Adaptors for key NonStop
applications(BASE24, BASE24-eps, AJB) A National Payments Processor
Mission-critical HP Nonstop with S custom payments app using SQL/MX
and SQL/MP Enabled SIEM integration and fraud alerting PCI
compliance and scope reduction Alert and identify actual fraud
activity Customer example XYPROTechnology All Rights Reserved
Addressing the Fundamentals
Requirement Monitor compliance with regulations and NonStop
securitybest practices Security methodology and system Best
practices Corporate security policies Monitoring of
systems/configuration Documentation Solution XYGATE Compliance Pro
(XSW) Automatic security scanning Regulatory compliance framework
File integrity checking, protecting databeing processed Identify
changes that impact security Document security policy and
bestpractices An International Bank Mission-critical HP Nonstop
with BASE24 application supporting POS and ATM Required PCI
compliance and reporting Acquired Compliance PRO as a single
purpose solution for File Integrity Checking Additional benefit of
PCI compliance reporting Customer example XYPROTechnology All
Rights Reserved XYPRO Technology All Rights Reserved
Conclusion Security is more important than ever Increasing levels
and cost of cyber crime Requirements for industry and government
compliance NonStop systems are high-value targets and need strong
security Basic security fundamentals still matter HPE and XYPRO can
help you secure the NonStop and comply withPCI and other
regulations NonStop Security Review services Using XMA and other
security included in NonStop OS XYPROTechnology All Rights
Reserved