|
|
Achieving Compliance in a Virtualized Environment
sponsored by Tripwire, Inc.
|
|
High profile information security failures resulting in the loss of cardholder data, confidential information, and personally identifiable information (PII) have substantially increased regulatory pressure. Many organizations must now comply with standards such as PCI, regulations like SOX-404 or HIPAA, and state privacy laws. Traditional IT auditors and security assessors have been focused on the physical components of the IT infrastructure. However, virtualization technologies are increasingly being used in business processes that have IT compliance requirements.
The goal of this paper is to present the unique considerations that virtualization presents to regulatory and standards compliance, and then prescriptively describe how to mitigate those risks:
- Discuss the different regulatory and contractual compliance objectives.
- Explain how to achieve and demonstrate compliance.
- Take a look at secure virtualization technologies.
- Provide a detailed example of achieving and proving compliance with PCI.
|
|
|
|
Available Resources from Tripwire, Inc.
|
 |
|
sponsored by Tripwire, Inc.
Analyst Brief:
Read this research briefing to gain insight into specific aspects of PCI compliance, particularly how to ensure and validate your ability to protect confidential customer data. Plus, learn how IT and security professionals view the various threats and challenges to their efforts to protect their organizations’ critical data.
Posted: 05 Jan 2010 |
Published:
05 Jan 2010
|
|
|
|
|
|
sponsored by Tripwire, Inc.
Case Study:
Sitel, Inc is a global provider of business process outsourcing (BPO). They needed to establish audit readiness and compliance across multiple regulatory standards and at the same time develop multi-tier change and configuration controls. Read this brief paper to learn how Tripwire was able to help Sitel meet all their needs and more.
Posted: 10 Dec 2009 |
Published:
10 Dec 2009
|
|
|
|
|
|
sponsored by Tripwire, Inc.
Case Study:
bwin Interactive Entertainment is an online gaming company that needed to quickly become PCI compliant, implement IT policies that would facilitate the company’s rapid growth, and generally ensure that their online offerings are all trustworthy, safe, and secure. Read this case study to learn how Tripwire solutions helped bwin meet all their needs.
Posted: 10 Dec 2009 |
Published:
10 Dec 2009
|
|
|
|
|
|
sponsored by Tripwire, Inc.
White Paper:
This whitepaper examines two areas of technical controls required by the PCI DSS relevant to configuration and change, which help security practitioners prevent breaches and get out from the PCI DSS checklist false sense of security.
Posted: 18 Mar 2009 |
Published:
18 Mar 2009
|
|
|
|
|
|
sponsored by Tripwire, Inc.
White Paper:
Enterprise businesses require the control framework involved in the PCI DSS to help improve internal operational, security and audit performance. This white paper details how alignment of business and PCI goals is important to ensure continuity and meet all internal security standards.
Posted: 08 Jan 2009 |
Published:
01 Jan 2007
|
|
|
|
|
|
sponsored by Tripwire, Inc.
Case Study:
Check out this case study to learn how Vesta implemented Tripwire® Enterprise to continuously monitor IT infrastructure for all unauthorized change, which helps maintain known, trusted, and compliant system environments and ensure audit requirements are met.
Posted: 25 Sep 2008 |
Published:
19 Sep 2008
|
|
|
|
|
|
|
TechTarget provides enterprise IT professionals with the information they need to perform their jobs
- from developing strategy, to making cost-effective IT purchase decisions and managing their
organizations' IT projects - with its network of
|
|
|
Definitions:
|
|
 |
|
All Rights Reserved,
Copyright 2000 - 2010, TechTarget |
|
|
|
|
Free Newsletters