Search Rocket site

Customer Case Studies

Global Bank

Integrating Mainframe Scanning with Penetration Testing
Financial & Banking

Over the years, a global bank has been relying on KRI (now a part of Rocket Software) to perform mainframe vulnerability assessments. While the organization previously held these responsibilities under their mainframe team, their operations director decided these tasks would be better suited for their internal penetration testing team. This change would mean a much more streamlined and unified approach to security for the bank.

Shifting these responsibilities over to a new team presented challenges for the bank. Their penetration testing team only knew network and PC scanning methodologies and lacked the experience needed to scan the mainframe effectively. Moving a task as critical as vulnerability scanning over to a new team presented many additional challenges to implementation. And in the face of those challenges, the bank needed to educate its penetration testers on the mainframe and ensure the team had the knowledge, resources, and tools to take on this new responsibility.

  • Automated Processes: With the right training, penetration testers were able to set up automatic vulnerability scanning schedules and automated checks.
  • Improved Testing: Penetration testers were now capable of analyzing vulnerability reports and work with vendors to mitigate vulnerabilities.
  • Operational Efficiency: With vulnerability scanning shifted to the penetration tester, mainframe operations teams were free to handle more pressing tasks.
Getting our penetration testers up to speed on the mainframe seemed like a tall task at the beginning, but it was well worth the time and effort we put into this integration. And, our company is much more secure to show for it.
Chief Information Security Officer (CISO)