With full virtualization being, the order of the day organizations have drastically increased the number of servers in their networks. This has led to sophisticated management and monitoring techniques. For security folk, however, it opens up a plethora of combinations and hypothetic for vulnerabilities to intrude the systems. Fairly enough the methods of securing virtualized environments has always been first on the list and techniques have developed before the challenges surfaced.
With standards such as those forms, the PCI council now releasing separate supplements for virtualized environments the myth of an absolutely secure system holds no good.
SISA has been securing organizations based on the following principles even before formal guidance was distributed by security standards organizations -