compliance guidance from the virtualization experts
TRANSCRIPT
Virtualized Environment Compliance Assessment
Virtual environments create extraordinary operating efficiencies, and now they can be just as secure
as traditional architectures. But IT executives must do more than just make that claim: they need a
compliance report from a reputable, independent audit firm that verifies that the job has been done
right and that controls are in place to keep them compliant with industry and regulatory mandates.
However, virtualized environment compliance assessments require special skills. Unqualified
assessors can be hard to work with, and often won’t sign off on the solutions you want to implement.
Don’t waste time and money with the wrong assessors. Get a compliance assessment from the
only IT Governance, Risk and Compliance (IT GRC) firm selected as a VMware Technology Alliance
Program (TAP) partner: Coalfire.
Compliance Guidance from the Virtualization Experts
Independent IT Audit & Compliance
SM
CHARTERPROJECT
DEFINE SCOPE CONTROLSTESTING
ANALYZE& REPORT
KNOWLEDGETRANSFER
I N F O R M AT I O N G AT H E R I N G A S S E S S M E N T D E L I V E RY
100101110010110101000101010101010
110010101001000101010101010011010
010010111001010100001101010001010101001010101010011010
010101010100101010101000100101110001101010
Coalfire delivers thousands of compliance assessments each year. Each engagement starts with a
charter meeting where the objectives, scope and schedule are defined, and ends with a comprehensive
review where findings and recommendations are presented to all key stakeholders.
Virtualized Environment Compliance Assessment
CHALLENGES YOU FACE COALFIRE DELIVERS
Gartner, on Virtualization and Security:
• 80% of enterprises now
have a virtualization
program or projects
underway.
• 45% of servers today are
using virtualization, with a
projected rate of 77% by
2015.
• 60% of virtual servers will
be less secure than their
physical counterparts
through 2012.
“Coalfire was selected for the VMware TAP program because of our independence and our leadership role in developing the audit standards for virtualized environments.”
—Mike McGee, Cloud Assessments Practice Leader, Coalfire
• Managing risk and minimizing scope
• Managing compliance across multiple standards
• Demonstrating compliance to partners and customers
• Assessors with cloud experience and VMware certifications
• Reports adapted to all major standards (PCI, HIPAA/HITECH, FISMA/FedRAMP)
• Audit reports and guidance documents from a trusted, independent source
Independent IT Audit & Compliance
SM
One Assessment, Many StandardsManaging compliance is a major undertaking, especially when you need to comply with
multiple standards. Too often, enterprises end up with redundant audits, confusing and
potentially conflicting controls interpretations and wasted time and money.
That’s why Coalfire takes the time to understand your business before we start the any assessment work. We will carefully define the scope of the environment to be assessed and measure compliance against all appropriate standards.
DALLAS | DENVER | LOS ANGELES | NEW YORK | SEATTLE
877.224.8077 | [email protected] | www.coalfire.com
Copyright © 2012 Coalfire Systems, Inc. All rights reserved. rev 2.09.12
Why Coalfire?Coalfire is the leader in assessing virtualized infrastructures and is the only firm approved to
conduct PCI, HITECH and FedRAMP assessments. Coalfire actively participates with the
PCI SIG that is authoring virtualization guidance documents, and is a frequently-requested
speaker by NIST and other standards organizations. In addition, Coalfire is the only IT GRC
firm in the Technology Alliance Partner (TAP) program. Finally, each VMware compliance
assessment is led by an assessor carrying VMware certifications (VCP, VTSP, and VSP).
Learn MoreWhether you are VMware business partner, client or integrator, Coalfire is
here to help. Please contact us for free consultation at 1-877-224-8077.
Mention “VMware” and you’ll be directed to one of our VMware-trained
professionals. Or, you can use this QR code (www.coalfire.com/VMware)
to contact our team directly and find additional resources.
HITRUST
“Coalfire has more VMware certified professionals than any other IT GRC firm”
—Tom McAndrew, EVP Professional Services, Coalfire
Certified third Party assessor organization
(Pending aPProval)