Posts Tagged ‘ Compliance ’

Analytics within the Secure Hybrid Cloud

July 18, 2013
By
Analytics within the Secure Hybrid Cloud

A big part of the secure hybrid cloud is the need for multi-tenant analytics to determine when security events and compliance issues happen. However, analytics cover many different aspects of security within the hybrid cloud from being a control point for compliance to handling vulnerability scanning. What are the requirements for multi-tenant analytics?

Read more »

Cloud Tenant PCI-DSS Dilemma

April 17, 2013
By
VirtualizationSecurity

There is a dilemma for all tenants of a public or private cloud: Scope. For the tenant, they want everything to be in scope. For the Cloud Service Provider (CSP) they want to limit scope to the bare minimum. What does it mean for a Cloud to be 'PCI Compliant' and why is this a…

Read more »

Public Cloud Reality: Application Security is in your Hands

February 18, 2013
By
VirtualizationSecurity

We recently moved workloads to the public cloud and the public cloud reality does not match the hype, nor does it match the application security requirements of a small or even large organization.

Read more »

SaaS Auditing: Knowing who did what

January 11, 2013
By
CloudComputing

Rightscale has been running into a problem with the simplest of auditing requirements: how to know when someone has logged in. This problem spans nearly all their 100s of SaaS providers used to run their business. Where is the ability to do SaaS Auditing?

Read more »

Offering Cloud Services: Why is it so Limited?

May 8, 2012
By
CloudComputing

There are many SaaS and Security SaaS cloud services out there, but they all lack one thing: full visibility. Why do these cloud offerings limit the ability to perform compliance auditing, forensics, and basic auditing against an organizations data retention, protection, and other necessary policies? Why not just grant the "right to audit", or better…

Read more »

Cloud: More Secure Than You Think?

January 13, 2012
By

At the end of last year and the beginning of this year the Virtualization Security Podcast featured two very different guest panelists to discuss cloud security, policy, and compliance: Phil Cox, Director of Security and Compliance at RightScale, joined us for the last podcast in 2011 and the George Gerchow of VMware's Policy and Compliance…

Read more »

Centralized RBAC Missing from Virtualization Management Tools

June 14, 2011
By
Centralized RBAC Missing from Virtualization Management Tools

As a delegate for Tech Field Day 6 in Boston, I was introduced to several virtualization and performance management tools from vKernel, NetApp, Solarwinds, Embotics, and a company still in stealth mode. With all these tools and products I noticed that each were not integrated into the roles and permissions of the underlying hypervisor management…

Read more »

Tripwire Inc. Acquired

May 19, 2011
By

In around 2008 Tripwire started making itself known in the virtualization space with the release of two free tools, Tripwire’s ConfigCheck and OpsCheck. By the time 2009 came around, Tripwire was getting itself fully established in the virtual space for the release of its new product, Tripwire’s vWire. vWire was release in the summer of…

Read more »

Virtualization Security Team-Ups

July 16, 2010
By

Catbird and HyTrust have teamed up to deliver a product that provides front-end access and compliance control for well understood actions via HyTrust, for all other actions, including intrusions, Catbird Security provides compliance control, firewall, IDS, and IPS. In other words, proactive security via HyTrust and reactive security via Catbird.

Read more »

Featured Solutions