Secure your journey to the cloud [ Trend Micro & VMware ]

Secure the cloudConsider this: in spite of the proven benefits of virtualization in terms of consolidation, increased availability, up-time, ease of management and cost savings, organizations are still only virtualizing about 20% of their environment.

What’s holding them back from realizing the full benefits of virtualization?

According to Gartner,1 security and privacy are by far the foremost concern – more than performance, immaturity and regulatory compliance. In fact, 74% of decision makers say security concerns are the number one reason they’re most hesitant about moving to the cloud.

In the traditional data center, perimeter security controls like Firewalls, DMZs, network segmentation and monitoring tools were enough. But the inability of physical segregation and hardware-based security to deal with attacks between virtual machines on the same server is cause for concern. So too is the fact that, as virtual machines extend to public clouds, the enterprise network security perimeter is all but evaporating.

There are whole host of other concerns for organizations on the security front: [Read more…]

Mind the gap with security in your virtualized data center [Trend Micro]

Previously we gave a high level view of securing a virtual environment. We talked about security gaps in the post and one of the biggest gaps is the lack of visibility between virtual machines on the same server.

In a physical world, you have a network based Firewall and possibly a Unified Threat Management device securing the physical gateway into your network. What happens when you go virtual and the traffic doesn’t leave the physical host? Your Network IDS/IPS is rendered useless as it’s blind to interVM traffic.

Ok, so let’s put an AV client on each virtual machine, that should help right? [Read more…]

Demystifying security in a virtual environment [Trend Micro]

We’ve been thinking about cloud a lot.  My goal is to help demystify security in a virtual environment.

What are we doing with cloud computing?

There are still servers, storage, networking, software, and security.  We’re really just implementing them in different ways. Rather than having file servers at every location we are centralizing our data (again as we did 20 years ago).  Instead of having multiple physical servers we are virtualizing our servers.  We’re even centralizing our client computing with a single instance of an OS across the network.

All I have to say is it’s pretty sweet.  I’m a huge fan.

It is much easier for us to secure our data when we know where it is.  [Read more…]