What Happens In The Cloud, Stays In The Cloud

When looking at how virtualization and cloud have changed traditional security, a lot of it has to do with visibility.  Until recently, security was focused on physical controls and visibility into the network, and so solutions were designed to sit on the perimeter or in-line with the network.  Intrusion detection and prevention is delivered through in-line IPS and next generation firewalls that feed Security Information Event Managers (SIEMs or SEMs) which logs the traffic and notes any discrepancies based on the policies and controls that the SIEM device was tuned to watch for.  This is standard practice in all IT shops, but what changes with virtualization? Continue reading