Securing data transfers from mainframe to dept servers

["Garcia, Gisela A" <ggarcia () MIAMI EDU>]

We are reviewing institutional practices involved in the transfer and
storage of data from mainframe to departmental servers that are managed
by decentralized IT staff and accessed by end-users.  The objective is
to identify areas of vulnerability that can be addressed by use of SFTP,
SSH, PGP, etc.  Can anyone share experience concerning guidelines for
review/assessment and what
policicies/procedures/standards/tools/products have been implemented to
address vulnerabilities found, etc?  Thanks in advance.

 

Gisela A. Garcia

IT Security

University of Miami