Key Business Challenges

Today, technology leaders are facing multiple security challenges, including the need to secure their enterprise against a barrage of new and evolving sophisticated threats. To overcome brand damaging impact, systems security have become the board room discussion for many of the organizations today. Organizations core objective is to strive against all kind of possible threats and are taking strong measures in building security policies for their installed AIX systems and are giving highest priority in educating their resources in the space of AIX systems security.

In this regards, TLC has developed a deep dive AIX systems security hardening services for IBM Power Servers running AIX operating system that you may consider appropriate in terms of taking an outsiders perspective that can bring unexpected value to your organization.

Services: Some of the highlights:

  • Studying 10 critical steps to security compliance.
  • Analysis of system wide security configuration files.
  • Study system-wide critical logs.
  • Identifying operating system gaps.
  • Users and systems related securities.
  • Deep dive study of TCP/IP configurations files.
  • Cron related security issues.
  • System recovery procedures based on AIX best practices.
  • Common Vulnerabilities Enumeration, & much more. 
This service shall study host based security highlighting the importance of AIX security features including TE & TCB setup, EFS implementation, system wide file permissions, RBAC, system authentication database including userís profiles and Login Controls. Identify a list of unnecessary installed file sets that are considered as a threat to overall security and a deep dive TCP/IP study.
Interested in Enterprise Professional Services Download the Services Brochure

Securing your environment model presents a challenge. Successful companies recognize that their security infrastructures need to address the business challenge. 

Most of them are not aware of the types of attacks that malevolent entities can launch against their servers and can plan appropriate defenses both internally and externally.

Service Code: WS303

TLC has successfully completed "AIX Systems Security Hardening Services for IBM Power Server" service for English Biscuit Manufacturers (Pvt) Limited at their head office in Karachi. 

The key objective of this five day client on-site service was to study AIX operating system security gaps on IBM Power 8 server running mission critical applications under SAP environment so that overall system-wide security can be improved by implementing TLC findings by appropriately taking recommended protective measures that shall help EBM in reducing the risks attached to their installation.

EBM is one of the few clients who strongly believes in involving 3rd party experienced consultants for this services rather depending upon vendor and ending up into buying additional hardware and expensive services as a part of their gap analysis services.

Client Feedback: We are an IBM customer running IBM AIX 7.1 on Power 8 System since 2015. From a security audit point of view we shortlisted TLC Pakistan based on their expertise on the subject especially with Adnan Ikram being one of the well-known IBM AIX experts in Pakistan.  

The 5 day workshop exercise conducted by him was very exhaustive and touched all the critical points in details. The surprise comes in after the actual workshop in the form of a detailed and comprehensive audit & action report that was done very professionally. Each area was explained, risks identified and the counter measures also given in details. The workshop helped us identify some critical shortfalls that were addressed immediately with ease.   

For any organization opting the AIX platform, I strongly recommend to have this service conducted as it gives a lot of insight especially on the best practices & security risks for AIX running on Power Servers (should server equally good for Linux as well) as usually these are the areas often overlooked during the implementation phase due to shortage of time or resources. 

Wishing TLC all the best and looking forward to engaging them on similar fronts. 

Zaid Umer Farooqui
Head of Information Technology