Virtualization

Keep Your Eye on The Ball: it is all about controlling access to the data

Written on February 16, 2011 by Sam Curry

Comments

Some good folks and I wrote a security brief detailing strategies for effectively evolving security operations in the face of escalating APTs. Rather than just put it out there, I thought it would be worth diving into why SOCS need to be more intelligent!

The Security Management, Hypocratic Oath

Written on February 15, 2011 by Sam Curry

Comments

Any discipline when sufficiently advanced will exhibit many of the same traits, building as Art Coviello mentioned on Tuesday in his keynote, on the shoulders of giants. The painful work of building wisdom, learning to work together and establishing procedures for what once seemed impossible can eventually make miracles commonplace.

What good is security policy if it’s not enforced?

Written on September 7, 2010 by Rashmi Knowles

Comments

I was staying in a hotel in Boston recently and thought I heard a dog bark every time I went into my room but as it was just a single ‘woof’ I didn’t take much notice.

The Cloud has a Silver Lining

Written on August 30, 2010 by Sam Curry

Comments (One)

Talking with customers every day, I hear constant concerns about lack of visibility into (and control over) security and compliance in the virtual infrastructure, lack of guidance and orchestration tools and the high cost and difficulty of meeting audits and achieving compliance.

Journeys (or stripping away what we don't need and bringing only "CIA" to the cloud with us)

Written on May 14, 2010 by Sam Curry

Comments

Here it is: a security guy saying it’s not about security. I am a security guy, so here goes…

It’s not about security.

Trumpet Your (Security) Achievements Loudly!

Written on April 28, 2010 by Sam Curry

Comments

The Lockheed Martin Cyber Security Alliance today announced a critical survey and data related to US government adoption of cloud services. Most importantly, it issued a related white paper on “Awareness, Trust, and Security to Shape Cloud Adoption” that address full-on the perception (as opposed to the realities) of

Speaking of Security Podcast #178

Written on March 2, 2010 by SOS Podcast

Comments

The Speaking of Security podcast team is on-site at RSA Conference in San Francisco. Learn about how EMC and RSA, along with VMware and Intel are collaborating on a Proof-of Concept for business-critical security, compliance and control in the cloud. We also discuss a new RSA Security Brief that presents an executive-level overview of the challenges involved.

Congratulations – you're hardware free! BTW – you still need the hardware!

Written on March 2, 2010 by Sam Curry

Comments

I met with a customer the other day who said that they aren’t allowed to talk about the cloud without making a small, open palm gesture, moving the hand in a circle. It was funny when he did the little motion, and the reason for the humor is that the Cloud is everywhere; and there are almost as many definitions and explanations for it (legitimate and illegitimate).

The New (Virtual) Stack Just Got Taller

Written on January 14, 2010 by Nirav Mehta

Comments

VMware’s acquisition of Zimbra is a big step towards delivering IT as a service and signals VMware’s intention to deliver the benefits of virtualization and cloud computing all the way from the infrastructure to the platform to the application layer.

Speaking of Security Podcast #173

Written on December 22, 2009 by SOS Podcast

Comments

A special edition of the Speaking of Security podcast looks ahead to 2010 through the eyes of three of RSA’s top bloggers. Uri Rivner, Sam Curry and Shannon Kellogg talk security in the new year.