Top 10 things you should read about Virtualization and Compliance

  1. How Server Virtualization Impacts Data Security and PCI Compliance – A great webinar that handles the topic of how server virtualization impacts PCI compliance. This is often a misunderstood area as virtualization is not specifically covered in the PCI specification.
  2. How to Achieve Security and Satisfy Compliance – A VMworld 2007 presentation (free registration required) that covers ESX security practices and recommendations. Additionally it covers compliance requirements and how to asses your compliance readiness.
  3. Achieving Compliance in a Virtualized Environment –  A white paper from VMware that discusses how to achieve compliance in a virtualized environment and how virtualization impacts compliance.
  4. Best Practices for Surviving Regulatory Compliance (VMworld 2007) – A VMworld 2007 presentation (free registration required) that covers PCI compliance and how it impacts VMware Virtual Infrastructure.
  5. Reducing the Scope of Your PCI Audit: Innovative Network Segmentation Using Host Intrusion Defense – A presentation (free registration required) from Third Brigade that covers how to segment your network to reduce the scope of your PCI audits.
  6. Staying PCI Compliant in Virtual and Physical Environments – A webcast from Tripwire that covers the challenges of virtualization for security and PCI compliance and best practices for proving control in a virtualized environment.
  7. Insights from an Auditor: Ensuring a Successful PCI Audit – A webcast from Tripwire that talks about common pitfalls of meeting PCI requirements and how to develop a strategy for assessing your payment card environment.
  8. Surviving Regulatory Compliance in the Virtual Infrastructure – A VMworld 2006 presentation on compliance rules for SOX, implications for VMware implementations and how to overcome security and audit issues.
  9. PCI Data Security Standard (PCI DSS) – The official documentation of the PCI standard. Contains the documentation of the latest PCI specification and a summary of changes between versions of the specifications.
  10. VMware Compliance Center – VMware’s compliance portal that contains links to documents that are compliance related.
Share This: