Compliance is not Security

Regulatory compliance can be achieved with the lowest levels of security in place. Defense-in-depth security begins with architecture and in the software-defined data center it requires a new level of administrative control. Security policies must be codified, automated, continuously monitored, validated, and enforced. And security must scale. Virtualization brings continuous change to the data center. Is your security keeping up?

 

Key takeaways from this session include:

  1. Security and compliance policies must be codified and automated in order to scale
  2. Network and data flow diagrams with accurate inventory and visibility to all connections between in-scope assets is essential
  3. Network activity must be monitored and enforced continuously with real-time notifications (undetected or months-long lag in detection of suspicious events are not acceptable)

Webinar Recording - January 28, 2014




Learn more about security best practices within the software-defined data center from Edward Haletky of The Virtualization Practice and Holland Barry of Catbird.

Presenter Bios:

Edward L. Haletky is the author of VMware vSphere(TM) and Virtual Infrastructure Security: Securing the Virtual Environment as well as VMware ESX and ESXi in the Enterprise: Planning Deployment of Virtualization Servers, 2nd Edition. Edward owns AstroArch Consulting, Inc., and The Virtualization Practice where he is also an Analyst. Edward is the Moderator and Host of the Virtualization Security Podcast as well as a guru and moderator for the VMware Communities Forums.


Holland Barry is the Solution Architect Director at Catbird.  Holland is an expert in networking, security, virtualization and cloud architectures with 20 years of experience in solution architecture and IT roles. He came to Catbird from Dell, where he was a converged infrastructure technologist within their Enterprise Solutions Organization. Holland now leads Catbird's team of solution architects and works closely with engineering to implement customer-centric product enhancements.