Virtualization Compliance Assessment (ESX Server and PCI/DSS 1.1)

Speaker

Instructor: Michael Hoesing
Product ID: 700878

Location
  • Duration: 60 mins
In this presentation each on the categories and requirements of the PCI/DSS standard 1.1 will be compared to settings within the Virtualization configuration of a VMware ESX Server 3.x machine. Security professionals who wish to have a closer look at the security settings possible on a virtualization host for consideration when crafting detailed policies.
RECORDED TRAINING
Last Recorded Date: Jun-2008

 

$249.00
1 Person Unlimited viewing for 6 month info Recorded Link and Ref. material will be available in My CO Section
(For multiple locations contact Customer Care)

$500.00
Downloadable file is for usage in one location only. info Downloadable link along with the materials will be emailed within 2 business days
(For multiple locations contact Customer Care)

 

 

Customer Care

Fax: +1-650-362-2367

Email: [email protected]

Read Frequently Asked Questions

 

As a resource allocation mechanism, Virtualization tools handle all network data passing through guests to the outside world, memory and storage resource access the guest uses to service their application. This gateway function results in the Virtualization host being in scope of PCI/DSS compliance requirements within the definition of "transmitting" card holder data if one of the host’s guests is in scope of the standard. In this presentation each on the categories and requirements of the PCI/DSS standard 1.1 will be compared to settings within the Virtualization configuration of a VMware ESX Server 3.x machine.

Areas Covered in the seminar:

  • The 12 domains of the PCI/DSS 1.1 standard will be mapped to the ESX Server configuration, where applicable. (Certain administrative and procedural areas, such as physical security are handled out side of the ESX Server 3.x configuration footprint.)
  • Configuration settings to help bring the default ESX Server more compliant with the PCI standard will be shared.
  • A checklist can be provided off-line detailing the over 100 sub-steps of the standard to ESX Server 3.X.
  • Assessment techniques, command line, management server views, and on-host assessment tools will be discussed to enable gathering evidence of host compliance.

Who will benefit:

  • Security professionals who wish to have a closer look at the security settings possible on a virtualization host for consideration when crafting detailed policies.
  • Assessment, Examination, and Audit professionals who wish to have some hands-on guidance on how to collect compliance verification data from an ESX Server.
  • System administrators who wish to perform a self-assessment of their ESX Servers to gauge compliance and plan any remediation efforts.

Instructor Profile:

Michael Hoesing, has over 30 years of experience in the areas of information systems audit and assurance, information systems implementation, and financial audit. His experiences span a variety of industries during his years with public accounting firms and his last 18 years has focused on the financial services with firms such as First Data Corp, First National Nebraska Inc., Pricewaterhouse Coopers, and American Express. Mike has been involved in both the external and internal audit processes and also has served as a software trainer. Mike has been a conference speaker on virtualization security, operating system assessments, eDiscovery, and PCI/DSS compliance at the Computer Security Conference, VMworld, ISACA’s CACS, IIA Midwest Regional, and the CERTconference and InfoTec conferences.

University involvement includes membership on the Creighton University and University of Nebraska at Omaha College of Business advisory boards, and facilitating sessions in Creighton

Follow us :

 

 

Refund Policy

Our refund policy is governed by individual products and services refund policy mentioned against each of offerings. However in absence of specific refund policy of an offering below refund policy will be effective.
Registrants may cancel up to two working days prior to the course start date and will receive a letter of credit to be used towards a future course up to one year from date of issuance. ComplianceOnline would process/provide refund if the Live Webinar has been cancelled. The attendee could choose between the recorded version of the webinar or refund for any cancelled webinar. Refunds will not be given to participants who do not show up for the webinar. On-Demand Recordings can be requested in exchange. Webinar may be cancelled due to lack of enrolment or unavoidable factors. Registrants will be notified 24hours in advance if a cancellation occurs. Substitutions can happen any time. On-Demand Recording purchases will not be refunded as it is available for immediate streaming. However if you are not able to view the webinar or you have any concern about the content of the webinar please contact us at below email or by call mentioning your feedback for resolution of the matter. We respect feedback/opinions of our customers which enables us to improve our products and services. To contact us please email [email protected] call +1-888-717-2436 (Toll Free).

 

 

+1-888-717-2436

6201 America Center Drive Suite 240, San Jose, CA 95002, USA

Follow Us

facebook twitter linkedin youtube

 

Copyright © 2023 ComplianceOnline.com MetricStream
Our Policies: Terms of use | Privacy

PAYMENT METHOD: 100% Secure Transaction

payment method