Application Auditing

Deter and investigate internal data breaches

Want to learn more? Check out the following resources:

White paper

Webcast

Because of the onslaught of media attention exposing privacy breaches, you know you need to secure your mainframe data. Chances are, you have taken steps to do so by installing a host of anti-intrusion technologies that keep unauthorized parties—both internal and external—from accessing your critical data.

But that’s not enough anymore. You also need to protect against data breaches caused by trusted insiders who have authorized access.

Study after study reveals that the biggest security threat organizations face is internal. Industry analysts such as Gartner and Forrester indicate an overwhelming majority of security incidents incurring actual losses are inside jobs. These findings are mirrored in another report, issued by the Ponemon Institute: An estimated 40 percent of data security breaches are caused by non-malicious employee error; 30 percent by malicious employee activity.

As an IT Auditor, I see Compuware Hiperstation for Application Auditing as a 'proactive defense' tool. By recording end-user application activity, a company can prevent and investigate fraud and data security breaches - helping to reduce the potential for significant damage. Hiperstation's detailed forensic information and audit reports are indispensable tools that provide indisputable proof that can be used to detect problems or policy violations; prevent incidents from becoming larger; and reduce the scope of an incident response.

Paul L. Haley, IT Auditor, CISA

An increasing number of laws require notification of customers after a breach has taken place, so companies have a bottom-line need to lessen the likelihood and contain the impact of data breaches. According to a second Ponemon Institute study, 20 percent of consumers have terminated a business relationship when a data privacy breach occurred; an additional 40 percent would consider doing so.

Compuware’s unique solution for Application Auditing takes IT security one step further than traditional approaches. Our solution acts like a surveillance camera for your application by recording authorized internal activity between users and the application. Not only does this deter inappropriate activities, it also provides an audit trail if a data breach occurs.

Compuware’s approach to application auditing is unique because Hiperstation is directly connected to the mainframe operating system. This means that it can handle the significant, production-type load necessary for an effective Application Auditing solution. In fact, customers have used Compuware Hiperstation to record over eight million transactions per day.

Compuware’s Application Auditing solution:

serves as a deterrent to inappropriate activities
contains—and lessens the impact of—a breach if one occurs
lowers cost of regulatory compliance
reduces risk and liability associated with production security and data privacy
improves rapid response for auditing infractions and application problems.

Compuware's solution for Application Auditing compliments our test data privacy solution by addressing data and application security issues in the production environment.

This solution builds on Compuware's application security leadership and award-winning products by enabling IT organizations to proactively address the enterprise application security challenge.

Join this Compuware webcast as Dr. Larry Ponemon, chairman and founder of The Ponemon Institute, and Compuware discuss the many costs of a data breach, regulatory compliance and how the Compuware Solution for Application Auditing takes IT security one step further than traditional approaches by capturing authorized internal application activity.

This white paper explores the dangers posed by internal data security threats. Learn how Compuware’s Application Auditing solution can help—both by acting as a deterrent to inappropriate activities and reducing the impact if a data breach occur.