ISV Ecosystem

ISV Ecosystem

ISV Ecosystem

Engage with the community of IBM Z and LinuxONE independent software vendors: share knowledge, exchange ideas, explore innovation.

 View Only

IBM Z Security: How One Global Bank Transformed Vulnerability Management with Rocket Software

By Mac Gupta posted 3 days ago

  

For more than 60 years, mainframe computers have been the trusted backbone for industries critical to the global economy. From powering mission-critical applications to enabling secure, high-volume transactions, IBM Z systems remain unmatched in reliability, scalability, agility and security. In fact, according to a recent IBM Annual Report, 45 of the top 50 banks rely on the mainframe as their core platform, underscoring its essential role in everything from transaction processing to risk management. 

Yet even the most secure platforms require continuous modernization. As cyberthreats evolve, so too must the processes and teams that safeguard these environments. One leading multinational bank recently faced this challenge head-on when a PCI audit prompted them to transition vulnerability scanning responsibilities from the mainframe team to their penetration testing group. The challenge? The penetration testers had limited experience with mainframe-specific vulnerabilities, scoring methodologies, or analytics-driven reporting. 

Solution: Bringing Vulnerability Scanning Into Penetration Testing With Rocket® z/Assure® Vulnerability Analysis Program (VAP) 
To ensure a smooth and secure transition, the bank partnered with Rocket Software and its Rocket® z/Assure® Vulnerability Analysis Program (VAP). Rocket delivered a comprehensive enablement approach: 

  • Education – Training sessions covering z/OS fundamentals, vulnerability scanning methodologies, and mitigation practices. 

  • Automation – Tools to streamline vulnerability detection and integrate scanning seamlessly into penetration testing workflows. 

  • Reporting – Consistent, analytics-driven output to support faster, data-backed decision-making. 

By integrating Rocket’s automation capabilities, the bank eliminated manual bottlenecks, enabling vulnerability checks to run efficiently across technology layers. The new approach not only accelerated risk identification but also provided clear, actionable insights for remediation. 

Results That Matter 
The benefits were immediate and measurable: 

  • Streamlined processes that improved collaboration between teams. 

  • Automated workflows that made mainframe experts available to focus on high-value initiatives. 

  • Enhanced reporting that empowered leadership with deeper operational visibility. 

The Takeaway 
Mainframe security isn’t just about technology, it’s about people, processes, and the ability to adapt. With the right training, tools, and automation, organizations can bridge skill gaps, strengthen defenses, and keep their most critical systems resilient against emerging threats. For this bank, the new vulnerability scanning program operates seamlessly on top of BM Z, the foundational element for financial services security. 

To learn how Rocket z/Assure VAP can help your organization streamline vulnerability management, improve reporting, and optimize resources, visit https://www.rocketsoftware.com/. 

0 comments
5 views

Permalink

https://community.ibm.com/community/user/blogs/mac-gupta1/2025/08/14/z-security-global-bank-rocket-vap