Conversation with Branden Williams on PCI and the Cloud, Part 1
VPN Haus: You’ve <a href="https://www.brandenwilliams.com/blog/2010/11/09/where-is-cloud-in-pci-dss-2-0/">blogged about</a> the fact that cloud isn’t overtly mentioned in PCI 2.0. Can you provide some examples of common problems merchants/service provider
Branden Williams: Merchants and service providers considering cloud solutions should absolutely read and understand the impact the fine print of their contracts with the cloud provider has to their security and compliance initiatives. In many cases, the m
VPN Haus: In the blog post, you recommend folks using the cloud map their data, yet many companies don’t do this. What’s the major challenge to mapping data?
Williams: Mapping data and data flows is an immense task. Most companies don't have singular systems or flows, and data sprawls everywhere. Moreover, to truly discover and map this data, you need tools. Some of these tools can be pricey and impact operati
Stay tuned, next week VPN Haus talks to Williams about comparisons between physical security and the cloud.