Latest news
“Accuvant has dedicated a team of experts to research the challenge of security in virtualized environments, and found there is limited expertise and understanding in the market,” said Steve Perkins, director of secure virtualization for Accuvant. “Most organizations have been adopting virtualization by transplanting traditional physical world security models and security products into virtualized environments. This is inefficient and insecure – virtual infrastructure needs virtualization-specific security architecture and solutions.
FIDELITYv is a simple framework for systematically looking at security in the virtualization space. It represents the main areas of traditional security infrastructure, each of which has virtualization-specific considerations: Firewalling, Intrusion Protection, Data Protection, End Point Protection, Logging and Analytics, IP and Transport, and Your Virtual Infrastructure.
Accuvant’s FIDELITYv framework is supported by the company’s Secure Virtualization services, which include:
Needs analysis and review – Accuvant discovers an organization’s business requirements and drivers, reviews existing policies, and carefully studies the current virtualized environment.
Design – Accuvant uses its actionable intelligence to help an organization create a plan toward adoption of virtualization/cloud that considers security and compliance with due diligence.
Architecture assessment and security gap analysis – Accuvant performs an assessment of an organization’s virtual infrastructure, as well as the technical and administrative controls in place, then provides targeted advice for improvements and activities designed to eliminate gaps and reduce risk.
Virtual security solution implementation – Accuvant applies its experience and research in virtualized environments to perform installation and integration of security products built for virtual infrastructures.
Spotlight
Is it time to professionalize information security?
Posted on 23 May 2013. | The issue of whether or not information security professionals should be licensed to practice has already been the topic of many a passionate debate.
Review: Logging and Log Management
Posted on 22 May 2013. | Every security practitioner should be aware of the overwhelming advantages of logging and perusing logs for discovering system intrusions. But logging and log management comes with its own set of difficulties.
Experts highlight top data breach vulnerabilities
Posted on 22 May 2013. | Hidden vulnerabilities lie in everyday activities that can expose personal information and lead to data breach, including buying gas with a credit card or wearing a pacemaker.
A closer look at Mega cloud storage
Posted on 21 May 2013. | Once a novelty, nowadays many cloud storage services are fighting for their piece of the market in the virtual world. Mega offers 50GB of free space with great pricing on Pro accounts.
The CSO perspective on healthcare security and compliance
Posted on 20 May 2013. | Randall Gamby is the CSO of the Medicaid Information Service Center of New York. In this interview he discusses healthcare security and compliance challenges and offers a variety of tips.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
