Case Study: Federal Law Enforcement Agency achieves real-time, enterprise-wide mainframe security visibility with Precisely Ironstream for Splunk

Federal Law Enforcement Agency - Customer Case Study

The Federal Law Enforcement Agency needed to prove ongoing information‑security compliance to auditors by collecting and analyzing operational log data from its distributed IT environment, but although it already used Splunk Enterprise it lacked visibility into sensitive IBM mainframe (z/OS) authentication and security events. The agency selected Precisely’s Ironstream for Splunk to fill that gap.

Precisely implemented Ironstream to collect System Management Facility z/OS logs, transform them into a common machine format, and forward them in real time to Splunk (Enterprise/Enterprise Security/Cloud). The result gave the agency full, enterprise‑wide visibility—failed logins, privileged user actions, user creation/deletion, password changes, and more—enabling individual‑level auditing and the detection of unusual access, privilege escalations, and excessive data movement for improved compliance and security monitoring.