Home > Blogs > VMware Security & Compliance Blog > Monthly Archives: February 2009

Monthly Archives: February 2009

Upcoming Virtualization Security and Compliance Webcasts

A quick intro for those that don't know me since this is my first time posting to our blog.  My name is Rob Randell.  I am a Senior Security and Compliance Specialist for the field here at VMware.  I actually came to VMware through the Determina acquisition back in August of 2007 (I know, it has taken me a long time to post to the blog ;-).  My role here at VMware is to talk to our customers and speak at industry events about the security and compliance implications of virtualization. 

The purpose of this posting is to let you all know about a couple of webcasts that will be taking place over the next couple of weeks.

The first is actually tomorrow (sorry for the late notice) at 2:30pm EST.  It is a Virtualization Security Roundtable hosted by Ed Haletky (Texiwill on the Communities). Chris Hoff, Iben Rodriguez, possibly Michael Berman from Catbird, and I will all be part of the roundtable.   Here is the link you can use to attend this webcast. 

The other webcast is on March 5th at 11am EST.  Chris Farrow and Dave Shackleford from Configuresoft and myself will be hosting an interactive
roundtable discussing the need for virtualization security, the challenges in
designing and implementing a secure virtual infrastructure and the available
resources out there. 

Go here for more details and to register for this event.

I hope to see you all there.

How Virtualization Affects PCI Compliance

VMware and Foundstone recently completed a two-part white paper on how virtualization affects PCI Compliance.  It takes a pragmatic view at the different components of
virtualization technologies and provides a perspective on how
enterprises that are looking to deploy such technologies should think
about their impact on PCI compliance initiatives.

  • Part 1: Mapping PCI Requirements and Virtualization
    This paper presents a mapping for the various and relevant PCI requirements and how these are impacted by virtualization.
  • Part 2: A Review of the Top 5 Issues
    paper highlights what we believe to be the top five issues and concerns
    that PCI Qualified Security Assessors (QSA’s) have about virtualization
    technology. For each of these we propose solutions that organizations
    can rely on to demonstrate compliance while deploying virtualization
    technology within their PCI environment.

Find them both in the Resources section of the VMware Compliance Center.