Broadcom has started to publish their own Vendor Product STIG – ACF2 for z/OS, how to properly utilize ACF2 to secure the z/OS Mainframe. STIG Articles provide documented z/OS Mainframe Security Controls to help you move forward in securing your mainframes.
The Broadcom Vendor ACF2 STIG for z/OS can be found at: https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-mainframe-software/security/ca-acf2-for-z-os/16-0/using-stig-articles.html