With several critical applications hosted on a legacy mainframe environment, the client was concerned about the access that users had on these applications and their usage of the applications. The lack of a single pane to see the granular access held by each user and the transactions run by the users was a blind spot for security professionals. With millions of transactions occurring on the mainframe applications, it was virtually impossible to detect suspicious transactions.
Additionally, the customer is using Symantec’s DLP product to track sensitive files on systems but was unable to detect rogue activity or access to these files, thus severely limiting their ability to protect their most sensitive data.
Although access was being reviewed from a compliance basis on individual systems or applications, they had no automated way of detecting high risk rogue access without the business doing manual access reviews across millions of entitlements.