Although cloud platforms and applications have become widely popular, many businesses still rely on mainframes to handle their most mission-critical tasks.
In fact, IBM finds that over 70% of IT workloads worldwide are handled by mainframes — and business leaders are steadily increasing their reliance on mainframes in parallel with cloud-based technologies. The Asia Pacific mainframe market exemplifies this growth, with GII Research anticipating the market to grow at a CAGR of 4.6%.
Chart: IBM Institute for Business Value
When it comes to security, companies have traditionally considered mainframes to be safer and far less vulnerable to cyberattacks. Such perceptions can create a false sense of security and cause organisations to prioritise other security investments and neglect important mainframe enhancements over time.
In life and in the realm of business, perceptions that do not match reality can be perilous, especially considering that Verizon warns of rapid and sustained growth in cyberattacks in the Asia Pacific region. These attacks can be financially devastating, with PwC revealing that 35% of organisations suffered losses anywhere from US$1 million ($1.31 million) to US$20 million over the past three years.
See also: Mitigating the risks of AI face-swapping fraud in financial services
The rise in frequency and potency of cyberattacks is undeniably a consequence of threat actors’ rising sophistication. Cybercriminals now have access to advanced technologies and AI-powered tools. The only logical response to this is for organisations to evolve in kind.
Common mainframe vulnerabilities
While mainframes have a reputation for robust security, they are hardly immune to vulnerabilities. Awareness is always the first step, and every organisation should understand the following vulnerabilities.
See also: Empowering data centres to make the AI race sustainable
The first is configuration-based vulnerabilities stemming from errors in system setup and parameters, which can create unintended access points for malicious actors.
Next is code-based vulnerabilities that grow out of programming errors or flaws within the mainframe’s software code. They can be exploited by malicious actors as entry points to infiltrate the system to siphon off data or cause system disruptions.
Insider threats also pose a significant risk. Whether intentionally malicious or otherwise, employees and contractors with authorised access can be weak links.
Besides that, relying solely on passwords significantly weakens mainframe security. Multi-factor authentication (MFA), for instance, adds a layer of protection by requiring multiple forms of verification.
Practical steps to wrestle back control
Despite acknowledging mainframe security as a top priority, new research by Rocket Software finds that only 28% of IT leaders are assured that they could proactively navigate threats.
In order to protect their mainframe systems effectively and improve confidence, organisations should consider the following steps:
To stay ahead of the latest tech trends, click here for DigitalEdge Section
- Employ a mainframe security architect
A dedicated security architect aids design and maintenance of a secure mainframe environment that is also tailored to an organisation’s specific needs.
- Implement code-based vulnerability scanning
Regularly scrutinising code for vulnerabilities helps identify issues before they escalate into more serious threats. - Conduct regular mainframe penetration tests
To uncover possible weaknesses, scheduled penetration testing unlocks valuable insights which can be leveraged to enhance defences.
- Implement real-time compliance checking
Compliance is crucial for cyber resilience, and continuously monitoring adherence to organisational policies ensures alignment with regulations and upholds mainframe security.
- Deploy MFA systemwide
MFA is central to a modern cyber security strategy. Implementing MFA across the system adds an additional layer of security that minimises the risk of unauthorised access.
Protect your business, invest in mainframe security
Businesses that neglect mainframe security are likely exposed to significant financial liabilities and losses. Plus, it is harder for them to comply with crucial regulations such as DORA (Digital Operational Resilience Act) and PCI 4.0 (Payment Card Industry Data Security Standard).
IT and security leaders need to understand that mainframe security is an ongoing commitment and not just a one-time task. By being constantly aware of the vulnerabilities inherent to mainframes and implementing proactive security measures, they can significantly bolster their organisation’s defences against costly breaches and stay within the bounds of industry regulations.
Praveen Kumar is the vice president for Asia Pacific at Rocket Software