New guidelines released by the PCI Standards Security Council (SSC) has shed new light on how to address PCI DSS concerns within public and private cloud environments. Learn what the guidelines reveal about achieving security and compliance in the cloud during a live webinar next week. Join Chris Brenton, director of security for CloudPassageand a member of the PCI SSC’s Cloud Special Interest Group (SIG) who will be joined by Dave Shackleford, vice president of research and CTO at IANS, for a webinar on the implications of the new PCI cloud guidance.
The webinar, “What You Need To Know About The New PCI Cloud Guidelines,” will take place on Tuesday, March 12 at 9:30 a.m. PDT / 12:30 p.m. EDT. Register online for the live 30-minute event by visiting: pages.cloudpassage.com/PCI-Guidelines.html
The PCI DSS Cloud guidance clarifies a number of issues frequently encountered by companies looking to leverage cloud technologies, in addition to guidance for assessors and auditors who need to align their customers’ cloud projects with the PCI DSS standard. Attendees will learn about key considerations from two cloud security experts, including one who was instrumental in the development of the guidance.
More specifically, attendees will gain insights into:
- The shared responsibility between cloud customers and service providers
- Logical segmentation of networks and protecting inter-VM communications
- Deficiencies in traditional tools relative to cloud environments
- Hypervisor/VM introspection considerations for compliance
- Clarity around data residency and the scope of PCI compliance
About the Presenters
Chris Brenton is the director of security for CloudPassage and a fellow instructor for the SANS Institute. He is also a member of the PCI Council’s Cloud SIG and directly contributed to the PCI DSS Cloud Computing Guidelines. He is one of the founders of the original Honeynet Project, as well as one of the original Internet Storm Center handlers.
Lead Faculty at IANS, Dave Shackleford is also a SANS analyst and senior instructor, as well as the founder and principal consultant with Voodoo Security. He has consulted with hundreds of organizations in the areas of security, regulatory compliance, network architecture and engineering, and co-chairs the Atlanta chapter of the Cloud Security Alliance.