Raz-Lee Security Inc., a major vendor of security solutions for IBM Power i computers, announced that SYSLOG real-time notification messages are now supported in all iSecurity products, including Audit, AP-Journal, Authority on Demand and Anti-Virus.

iSecurity’s SYSLOG feature sends events from various Power i facilities (such as logs and message systems) to remote Security Information and Event Management (SIEM) servers.

The advanced iSecurity SYSLOG capacity enables the system administrator to categorize events according to a range of severities such as emergency, alert, critical, error, warning, notice, informational and debug. It also enables the user to decide under which conditions the Power i should send a SYSLOG message, to choose the IP address of the SYSLOG server, the facility from which the message is sent, the severity range and the recipients, as well as decide whether the SYSLOG message should contain all events from iSecurity Firewall or only the rejected entries. Another useful feature is the ability to easily define the message structure, rather than receiving the standard long message and having to manually divide it into intelligible parts.

One of Raz-Lee’s Israeli customers, among the largest insurance firms in the country, makes extensive use of iSecurity SYSLOG, and transmits the entire journal receiver log using SYSLOG messages. Approximately 1000 alerts are transmitted per second, utilizing only 1% of the CPU.

“Our SYSLOG facility is not only spreading to additional products, but also to more and more customers worldwide,” said Eli Spitz, VP Business Development, Raz-Lee Security. “It gives customers the utmost flexibility to control both message conditions and content, thereby making security in the organization considerably more efficient.”

Here’s an actual case of where iSecurity, Raz-Lee’s Power i Security solution, could have saved a European bank, LGT, a lot headaches, expenses and bad press.

On February 26th, 2008 it was reported that at least eight countries were investigating their citizens for allegedly hiding financial assets at LGT Liechtenstein, an offshore bank.

The investigations were based upon the details of the bank’s clients obtained by the German secret service from a former bank employee. Using these details, German authorities investigated and prosecuted hundreds of people listed in the stolen data. At least one of the people who were investigated committed suicide, others were imprisoned, and still others were forced to leave their job at LGT. Naturally, Germany was able to make many millions of dollars in unpaid tax revenue on these non-reported assets.

On February 8th, 2010, in a decision described as “Awesome” in Business Insider website, a German court ordered the LGT subsidiary to pay more than $10M in damages to a client for failing to inform him that his confidential details had been stolen and handed to authorities, thereby harming his chances of escaping criminal penalties for tax evasion!

The remarkable part of this story is that back in February 2008, Raz-Lee’s Swiss distributor had spoken to this bank about iSecurity and reported the following:

“This bank has iSeries systems, and we spoke with the IT Managers, staff and other managers there. Their response to our presentation of iSecurity’s auditing, security and compliance solutions was something like “We have security, we don’t think we need security, maybe in the future.”

So now, LGT encountered this terrible mess!

Let’s hope that YOUR company installs iSecurity before the worst happens…

For more information click here

Raz-Lee Security will be participating in the 11th Information Security Conference, to be held on March 17^th, in Petach Tikva, Israel.

The conference will be attended by CEOs, IT Security managers and experts, IT Managers, Industrial companies’ managers, business development managers and others. A multitude of lectures will be offered by top experts from IBM, Juniper Networks, Bezeq Telecommunications and NetApp, as well as by the President of the Israeli IT Security and Auditing Association. In addition, a panel will be held on the subject of the Revolution in IT Security Regulation.

At the conference, Raz-Lee will showcase nuBridges Protect, a state-of-the-art encryption and tokenization solution distributed in Israel. nuBridges Protect secures sensitive data at rest in database fields, files, applications and associated backup storage, to help companies comply with mandates like the Payment Card Industry’s Data Security Standard (PCI-DSS) and government privacy acts.

This conference is Raz-Lee’s second local event this quarter, following the IT GRC (Government, Risk Management & Compliance) annual event in Tel Aviv on February 18th.

“Raz-Lee is highly active and well-established in Israel, boasting prominent customers, including the largest banks and health funds in the country,” said Eli Spitz, VP Business Development, Raz-Lee Security. “Our nuBridges Protect solution is the only solution in Israel combining both encryption & tokenization, and there is ever-growing interest in the solution among the leading enterprises in Israel.”

For more information (Hebrew) click here.

Getting PCI Compliant can be a hassle… or it can be a quick & effortless task. Find out how to easily check your Power i’s compliance status, customize a built-in report, receive summary or detailed reports, and much more. Click here to View the iSecurity Compliance Evaluator Demo

Raz-Lee Security (www.razlee.com), a leading supplier of information security solutions for IBM Power i (AS/400) Servers, announced a partnership to provide technology for Imperva’s SecureSphere Agent for DB2/400 (www.imperva.com), to be available in March 2010.

Imperva’s proven excellence in cross-platform analysis and reporting of database activity is unequaled in today’s market. These capabilities, together with Raz-Lee’s long-standing Power i security expertise, enable SecureSphere customers to enjoy seamless integration of Power i database security with similar functionalities on other platforms.

Raz-Lee’s technology embedded in SecureSphere Agent for DB2/400 enables SecureSphere to monitor all database activities, including Insert, Update, Delete and Read access to sensitive business data. This is achieved by tracking information sources such as the Power i audit journal (QAUDJRN), database journals or ODBC network requests.

“A large number of our customers and prospects expect Power i support.  Raz Lee provided the most robust and compelling platform support to the demands of Power i customers,” said Limor Elbaz, Vice President Corporate Development at Imperva.

“The choice of iSecurity by Imperva highlights Raz-Lee’s prominent market position in the area of Power i Application Security,” said Shmuel Zailer, CEO, Raz-Lee Security. “As the leading Power i security experts, we were able to provide Imperva with a complete and comprehensive audit trail of Power i database activities and all related information. In addition to SecuerSphere Agent for DB2/400 specific capabilities, Raz-Lee offers customers worldwide comprehensive Power i specific solutions for all security and compliance-related aspects of the Power i.”

 IBM Power i systems and databases are installed at hundreds of thousands of installation worldwide.

About Imperva

Imperva, the Data Security leader, enables a complete security lifecycle for business databases and the applications that use them. Over 4,500 of the world’s leading enterprises, government organizations, and managed service providers rely on Imperva to prevent sensitive data theft, protect against data breaches, secure applications, and ensure data confidentiality. The award-winning Imperva SecureSphere is the only solution that delivers full activity monitoring from the database to the accountable application user and is recognized for its overall ease of management and deployment. For more information, visit www.imperva.com.

Written by Shari Masafy
Email Shari Masafy at marketing@razlee.com
For more information visit www.razlee.com 

I’d like to share a very informative article by Gary Palgon, who is VP Product Management at nuBridges, a leading data protection software vendor. The article clearly outlines the concept of tokenization, including examples of its implementation.

Click here to view the article.

Raz-Lee Security will be a sponsor in the upcoming CISO (Chief Information Security Officer) Conference. The event will take place on Wednesday 9 December in Tel Aviv, Israel.

Raz-Lee Security will give a presentation titled “How does Tokenization Assist Companies in Achieving PCI-DSS Compliance?”. The session will focus on the advantages of Tokenization for corporate data security and for minimizing the efforts invested in PCI Compliance. For instance, one major advantage of using Tokenization is that it can remove applications and databases from the scope of PCI DSS audits, yielding significant cost, complexity and time savings. In addition, the lecture will introduce nuBridges Protect – an award-winning encryption, tokenization and key management solution which Raz-Lee Security distributes in Israel – the first encryption and tokenization solution to be sold in this country.

The event will be held by the Israeli ICT (information and communications technology) forum managed by ThePeople, comprising 2500 members in the fields of industry, government, medicine, press, insurance, banking, communications and more. Up to 10 events are held annually, with panels, lectures and networking opportunities.

“Israel, renowned for state-of-the-art technology, is one of our strongholds, and we are proud to sponsor a key ICT event in this country,” said Eli Spitz, VP Business Development, Raz-Lee Security. “As in other areas in the world, PCI is rapidly penetrating Israeli corporate consciousness, and Israeli companies are searching for solutions which will enable them to minimize the efforts towards compliance. In this aspect, the nuBridges Protect solution we will be introducing at the CISO conference perfectly suits the Israeli market needs.”

Written by Shari Masafy
MarCom Manager, Raz-Lee Security
Email Shari Masafy at marketing@razlee.com

Raz-Lee Security will be participating in the IBM server Systems Technical Conference, October 19-23 in Mannheim, Germany.

The conference will offer a compelling agenda that includes more than 300 knowledge-packed technical sessions and hands-on training delivered by top IBM developers and experts. It’s designed to provide clients and Business Partners with the most up-to-date information on recent IBM Systems announcements and technologies.

 In the conference, IBM executives, developers and industry experts will reveal the latest innovations, trends and directions relating to IBM Power i, System x, BladeCenter and Storage Systems.

This conference is intended for IBM clients, IBM Business Partners, Independent Software Vendors and System Integrators, and is aimed primarily at technical specialists who perform an implementation role.

 ”As an IBM Advanced Business Partner, and as leading Power i Security experts, we are committed to staying on top of IBM technology and security technology in general – which makes such conferences a must for us,” said Eli Spitz, VP Business Development, Raz-Lee Security. “Of course, we will use this opportunity for strengthening our ties with IBM, current and future business partners, and our worldwide customers”.

For more information click here.

Written by Shari Masafy
Email Shari at marketing@razlee.com

Many IBM i customers cringe when they think of the Payment Card Industry Data Security Standard (PCI DSS). But there’s no need to be afraid of it. The operating system provides all of the raw tools needed for compliance and if you would rather not get your hands too dirty there are 3rd party products to help too.

During this FREE, one-hour webcast, Pat Botz discusses the 12 primary PCI requirements and matches them up with operating system provided functions that help you manage and achieve compliance. In addition, Pat will note the requirements that many customers use to choose 3rd party products that make compliance easier, faster, and/or cheaper to achieve.

About the speaker:
Patrick Botz is the principal consultant and founder of Botz & Associates, Inc. He has a wealth of experience particularly in the information security field as well as in the computer industry in general.

He joined IBM in Rochester, MN in 1989 where he held several positions. In 2005, Pat started and headed the IBM Lab Services Security Consulting practice where he worked with customers worldwide until he left IBM in November 2007.

Pat is also the author of numerous trade press articles and a co-author of the book “Expert’s Guide to OS/400 and i5/OS Security.” In addition, he is a world-wide speaker on various platform specific and general security topics.

When? September 29th, 2009 12:00 PM EST   through   1:00 PM EST

Click to register  
Tel: 1-800-650-1801 (US)
Email: webcasts@systeminetwork.com

The Webinar is sponsored by SEA (Software Engineers of America), Raz-Lee’s partner, which successfully sells iSecurity in the US.

Herzliya, Israel – August 6, 2009 – Raz-Lee Security, a leading supplier of information security solutions for IBM System i, and IBM Italy, held a seminar at the IBM Forum in Segrate, Milan on July 23, 2009, in which Raz-Lee provided information on compliance with the new Italian Privacy Code 196/2003 relating to System Administrators’ role in corporate data security.

 The seminar included technical and marketing presentations and demos by:

• Nicola Fusco – South Europe Area Manager, Raz-Lee Security
• Adriano Berneri – Independent expert in security regulations
• Elvio Cappelli – Technical Support Manager, Raz-Lee Security
• Massimo Maggioni, IBM Manager

 The event was well-attended by end-users in Italian enterprises and System i technology resellers. This event follows another Raz-Lee venture which included 30 free Round Table meetings covering the requirements of the new legislation and how best to implement it on System i. The round table meetings were conducted across Italy.

The new Italian privacy legislation specifies procedures for data protection, including technical and administrative measures which companies are required to implement. It holds IT departments directly responsible for user access and actions relating to companies’ information systems. The legislation is expected to come into effect on  December 15^th 2009.

“Raz-Lee’s close partnership with IBM enabled us to jointly provide this valuable session to Italian enterprises,” said Nicola Fusco, South Europe Area Manager, Raz-Lee Security. “We are committed to providing ongoing support to Italian companies as they undertake the complex challenge of becoming compliant with the new legislation.”