Level 2: BCS MTP Specialist (Security)
Below are details of the skills that must be demonstrated in
the examination in order to succeed at this level, and the prerequisite
education and/or experience expected.
Examination
The examination will be conducted over one day in invigilated test conditions. The disciplines and knowledge tested will comprise:
- RACF and security - knowledge of theory
- RACF - practical expertise
Skills demonstrated
In order to succeed at this stage and to qualify as a Level 2 BCS Mainframe Technology Professional (Security), candidates will be expected to:
Demonstrate an understanding of all RACF commands by:
- creating commands for: Defining; Listing; Modifying and Deleting
Profiles in the User; Group; Dataset and General Resource classes.
- explaining the authority required to issue the above commands.
Demonstrate an understanding of granting access to resources by:
- using the RACF Permit command to grant & remove access to the standard and conditional access list for datasets & general resource profiles
- using the RACF Permit command to copy an access list to a profile
- explaining the authority required to use the RACF permit command.
Demonstrate an understanding of non-RACF segments by:
- describing the use of the TSO & OMVS Segments
- using RACF commands to List, Modify & Delete segments from user, group & general resource profiles
- explaining the authority required to use the above commands.
Demonstrate an understanding of group authorities by:
- describing the use of the Connect command
- describing the use of the Join, Create, Connect & Use operands
- explaining the authority required to use the above operands.
Demonstrate an understanding of RACF system settings by:
- describing the output from a SETROPTS List command
- using the SETROPTS command to activate a new RACF class
- using the SETROPTS command to refresh in Storage profiles.
Demonstrate an understanding of the Data Security Monitor (DSMON) by:
- describing the output generated by DSMON
- explaining in detail the fields on the sensitive datasets report
- explaining in detail the selected users report.
Demonstrate an understanding of Started task definition by:
- explaining the use of ICHRIN03
- describing the use of the RACF Started class
- describing in detail the fields available in the STDATA segment for the Started class
- generating commands to define, list, modify and delete entries in the RACF Started class.
Demonstrate an understanding of the Global Access Table (GAC) by:
- describing the use of the GAC
- describing how access is denied & granted
- generating commands to define, list, modify and delete entries in the RACF Global class.
Demonstrate an understanding of RACF Variables by:
- describing the use of the RACF Variables
- describing the use of the RACF RACFVARS class
- generating commands to define, list, modify and delete entries in the RACF RACFVARS class.
Demonstrate an understanding of Field Level Access Checking by:
- describing the use of Field level access checking
- explaining the use of the RACF FIELD class
- generating commands to define, list, modify and delete entries in the RACF Field class.
Demonstrate an understanding of the RACF FACLITY class by:
- explaining who uses the RACF Facility class & why
- describing the profiles found in the Facility for OMVS, DFP and Contents Supervisor
- generating commands to define, list, modify and delete entries in the RACF Facility class.
Demonstrate an understanding of the RACF Search command by:
- describing the use of the Search command
- describing the use of the following keywords:
MASK
FILTER
CLIST
USER
- using the Search command to generate RACF commands.
Prerequisite knowledge/experience
Candidates for the Level 2 BCS Mainframe Technology Professional (Security) certification will be expected to have at least three years experience of performing RACF Administration in a mainframe-based data centre and will have Level 1 BCS Mainframe Technology Professional certification.
|
