End User Computing (Desktop) ISV Apps/Cloud Software as a Service (SaaS) Virtual Infrastructure

VMware Introduces PCI Compliance Reference Architecture for Business-Critical Applications at VMworld® 2012 Europe

VMworld® 2012 Europe will be a great event for networking and learning. Please stop by and visit us at booth V100 where you can learn about the new Cloud Management solutions, and how to gain even more efficiency from VMware vSphere. VMware experts will be available at our booth to discuss the critically important issue of compliance.

As you advance in your journey to the cloud and take steps to virtualize business-critical applications, VMware is here to provide the products and support you expect. VMware has recently taken steps to deliver products, services and guidance to address the multitude of regulations faced by your organization and help you meet your compliance needs.

The virtualization of business critical applications requires our customers to address multiple intersecting regulations. On Thursday, we announced the availability of the VMware Compliance Reference Architecture for PCI.

VMware Compliance Reference Architectures provide the guidance necessary to configure, deploy and operate VMware cloud infrastructure when running highly regulated business critical applications.

The VMware Compliance Reference Architecture for PCI is the first of what will be multiple regulation and corporate governance specific architectures. With VMware cloud infrastructure, along with security and compliance partner solutions, in addition to support from accredited audit partner guidance, we will deliver regulation specific, auditor validated solution guides and reference architectures.

The ability for you to securely deploy and manage your VMware cloud infrastructure is a critical first step to realizing the efficiencies of VMware vSphere. The next step when virtualizing business critical applications is to address the unique compliance requirements of your organization. The VMware Compliance Reference Architecture for PCI guides you to confidently move your business critical applications to the cloud.

Take time to visit the VMware booth (V108) to learn how the VMware vCenter Operations Management Suite delivers the functionality required to meet the IT and business compliance needs for your organization.

VMware partner ecosystem

The VMware Technology Alliance Partner (TAP) and the Consulting and Integration Partner Program(CIPP) programs have been expanded to include audit advisory firms with the addition of Coalfire, K3DES and  Accuvant, into the programs. These partners bring a new level of compliance expertise to VMware and our technology partners. Combining their industry expertise and VMware accreditation, they provide objective guidance to customers on the use of VMware products to address complex regulatory requirements.

Visit Symantec in booth P107 to learn how Symantec Endpoint Protection integrates with VMware vShield Endpoint to meet PCI Requirement 11.

VMware Compliance Reference Architecture for PCI

The Compliance Reference Architecture for PCI includes the VMware Solution Guide for PCI and the VMware Architecture Design Guide for PCI.

These documents help customers understand how they can leverage both VMware vCenter Operations Management and VMware vCloud Networking and Security Suites to deploy secure and compliant VMware vCloud and View infrastructures in accordance with PCI requirements.

Visit HP in booth D202 to learn how HP vController+vFW helps customers meet PCI DSS Requirement 2.

  • VMware products are identified and mapped at the control level to PCI DSS 2.0 requirements
  • Operational best practices are combined with VMware accredited PCI QSA auditor guidance to help organizations meet PCI DSS 2.0 regulatory requirements
  • VMware architectural design recommendations are PCI QSA reviewed
  • VMware technology partner products are identified and mapped to the PCI DSS 2.0 requirements by VMware accredited PCI QSA auditors
  • VMware’s technology partners working with VMware accredited PCI QSA audit partners deliver the same level of product guidance delivered as an addendum to the VMware Compliance Reference Architecture.

Visit RSA at the Cloud Security pod in the EMC booth D207, to see how this architecture is supported by the RSA Archer GRC platform, as well as the rest of the RSA product suite, which together can provide complete visibility into your PCI compliance posture.

VMware Technology Partner Solution Guides for PCI

VMware technology partners are publishing Solution Guides for PCI that highlight how VMware security and compliance partner solutions can be leveraged alongside of VMware technologies in highly heterogeneous environments. VMware’s technology partners working with VMware accredited PCI QSA audit partners provide the same level of product guidance delivered as an addendum to the VMware Compliance Reference Architecture.

Visit LogRhythm in booth N100 to learn how the LogRhythm PCI Cloud Compliance Solution can enable your organization to meet multiple PCI requirements

For more information on VMware compliance solutions email us at [email protected]

Parag Patel
Vice President, Alliances, VMware