Sep2014

Data-Aware Services: Oh, the Places We Could Go!

I have written many times about the need for application-centric data protection and data-centric security. But what these both require is that our data protection, security, management, and networking are data-aware. We use applications, but we thrive on data. The …
Read More “Data-Aware Services: Oh, the Places We Could Go!”

Apr2014

Is SDDC a Product or a Mindset?

My response to Stephen Foskett’s tweet of a post about the Software-Defined Data Center (SDDC) Symposium led to an interesting conversation about the nature of the SDDC—what it is, what it is not, and why we should care. The software-defined …
Read More “Is SDDC a Product or a Mindset?”

Apr2014

State of the Art: Virtual Desktop Security

User experience drives virtual desktop deployments and can either make or break them. If the user experience is awful, users will find other, often less secure methods for doing their jobs. VDI sits at an interesting crossroads where storage, memory, …
Read More “State of the Art: Virtual Desktop Security”

Feb2014

Privileged Accounts within SDDC

As your software-defined data center (SDDC) grows, so does the quantity of privileged accounts. This was the discussion on the Virtualization Security Podcast of February 13, 2014, where we were joined by Thycotic Software. Privileged accounts are used by administrators …
Read More “Privileged Accounts within SDDC”

Dec2013

Scope: It Is All about Scope

When to implement security and data protection practices, or even change existing ones, is all about timing, knowledge, and scope. Deciding what to implement at any particular time requires knowledge of what needs to be fixed, and also of what …
Read More “Scope: It Is All about Scope”