Conversation with Branden Williams on PCI and the Cloud, Part 1

by VPNHaus | 03/03/2011 |Expert Q&A, PCI

This week, VPN Haus catches up with Branden Williams, a seasoned information security specialist, about PCI and the cloud.

VPN Haus: You’ve <a href="https://www.brandenwilliams.com/blog/2010/11/09/where-is-cloud-in-pci-dss-2-0/">blogged about</a> the fact that cloud isn’t overtly mentioned in PCI 2.0. Can you provide some examples of common problems merchants/service provider

Branden Williams: Merchants and service providers considering cloud solutions should absolutely read and understand the impact the fine print of their contracts with the cloud provider has to their security and compliance initiatives. In many cases, the m

VPN Haus: In the blog post, you recommend folks using the cloud map their data, yet many companies don’t do this. What’s the major challenge to mapping data?

Williams: Mapping data and data flows is an immense task. Most companies don't have singular systems or flows, and data sprawls everywhere. Moreover, to truly discover and map this data, you need tools. Some of these tools can be pricey and impact operati

Stay tuned, next week VPN Haus talks to Williams about comparisons between physical security and the cloud.

This website uses cookies

We use cookies to personalize content and analyze access to our website. You can find further information in our data protection policy.

OK