The Business Challenge

Automating IT controls is critical in addressing the complexity of regulatory and operational compliance. Companies look to optimize IT governance and respond to compliance mandates. Our SYSchange solutions enable customers to manage and control their IT environments and comply with government regulations leading IT control framework, COBIT and industry standards, including ISO 20000 and ITIL.

Today’s top data centers require higher automation and greater transparency in their world of systems software change management. There is a high demand in the industry for a centralized approach to system-wide protection and auditing, as well as compliance with strict mandates such as the Sarbanes-Oxley act, and other regulatory mandates. According to Gartner, “Sarbanes-Oxley is the most sweeping legislation to affect publicly traded companies since the reforms during the Great Depression.”

As a result, data centers have been seeking solutions for tackling Software Configuration Management (SCM) needs in multi-LPAR z/OS environments and SYSPLEXes.

Data centers are looking for solutions that enable their z/OS system managers to centrally control and manage deployment of software updates across their local or remote systems in a sustainable and automated fashion. By automating IT controls, organizations using SYSchange reduce the cost of compliance and proactively detect and correct IT issues before they affect their bottom-line. CIOs and IT Managers must keep their IT streamlined by automating their day-to-day operations to maximize their systems and applications availability.

Applications are the biggest source of downtime, accounting for roughly $213,000 annually, split 65/35 between outages and degradations. Focusing on the source of application outages could save many organizations a significant amount of money, according to an Infonetics Research.

The Solution

SYSchange for z/OS ensures a higher level of security, accountability, recoverability, and automation through state of the art technologies built into the SYSchange Started Task (STC).

The STC guarantees systems administrators that all changes at the member-level are transparently recorded and backed up for future recovery and auditing purposes. The STC also proactively eliminates system intrusions using a unique member-level locking/unlocking technology which is easily switched on or off by the systems administrators as needed. The SYSchange on-line recovery feature allows for convenient viewing of changes and instant recovery from errors when necessary.

For extra accountability, audit related information are saved by SYSchange for years, and instantly retrieved upon demand. SYSchange for z/OS significantly improves systems reliability through more efficient and effective change management standards. For instance, SYSchange provides the flexibility of working in “freehand mode” where users introduce their changes “freely” using the ISPF, batch, or any environment of their choice, and yet the STC still protects the library and performs its critical monitoring and backup as usual.

Additionally, certain components identified by an administrator can be explicitly “checked out” to individual users, or to a RACF group. Thus, only the designated users can change those components while others are prevented.   SYSchange capabilities are providing data centers around the world with new dimensions in proactive change control and management. SYSchange is a truly scalable next generation software solution which confronts these challenges and beyond.

SYSchange minimizes the risk of security threats and ad-hoc changes in critical systems and application software environments and provides the evidences required to prove that the desired security evidences and compliance posture has been met.

“At Rabobank we use SYSchange Advanced Deployment as a standard tool for our software distribution. SYSchange also complements our full volume copy and our other home-grown tools by effectively controlling and preventing regressions.”

HOLLAND

  • Create a more resilient z/OS environment
  • Create an environment with Segregation of Duties (SOD) allowing  an authorized group of users to Create Packages and another group  to Promote the Packages
  • Bring an automated process and transparency to System Software Change Control and Management (z/OS, IMS, DB2, CICS and vendor software) in SYSPLEX environments
  • Reduce costs and complexities of meeting Auditing and Compliancy Requirements by providing a process and a control structure
  • Improve quality and reliability by quickly ascertaining what  has changed in a very large software environment to review the changes and to reduce outages
  • Create an environment that promotes software integrity,  added security, and reliability
  • Never miss a change when deploying software changes  across environments