Virtualization Security

As more organizations plan and deploy virtualization solutions, the additional complexity in design and management of the various components can lead to an increase in vulnerabilities and possible threats. Sword & Shield consultants possess considerable expertise in designing and reviewing virtual environments, and can provide in-depth analysis of the risks facing your organization’s virtualization infrastructure, with particular emphasis on VMware’s VI3 and vSphere solutions.

• Architecture and Configuration Review – assesses the design and configuration of all major virtualization components, ranging from the management servers (such as vCenter Server) to hypervisor platforms like ESX. In addition, Sword & Shield can determine the risk to physical network and system connections, as well as storage environments.
• Virtualization Risk Analysis – determines the possible vulnerabilities, threats, and impact to the environment resulting from virtualization deployment.

Our Methodology for Virtualization Security Testing

Our objective is to assess all critical components of the virtual infrastructure, as well as any physical systems and network devices connected to it, to determine the overall risk posture of the virtualization environment.

Our reviews will often begin with an analysis of network diagrams and virtual architecture design. Once we understand the components involved in the virtual environment, we will examine each system’s configuration; this will range from the management server to the hypervisor platform, as well as local client software, storage environments such as Fibre Channel and iSCSI, and virtual network objects.

Sword & Shield’s approach to virtualization security assessments consists of the following key stages:

1. Virtualization Architecture Review
2. Configuration Analysis
3. Network and Storage Assessment
4. Local and Network-based Vulnerability Identification
5. Threat Model Identification
6. Analysis and Reporting

Questions Our Report Will Answer

• What are my most critical vulnerabilities that threaten the security of my virtual environment?
• What threats am I susceptible to within the virtual environment considering the architecture I have chosen?
• What is my overall risk for the virtual environment, and how can I lessen or mitigate the various risks facing us?
• How do I prioritize risk mitigation goals, create a plan for improvement, and get budget approved?

Virtualization Security Assessments cover a comprehensive range of concerns and areas within your organization. Sword & Shield will identify needed policies, existing vulnerabilities, existing and potential threats, and configuration and design weaknesses and improvements, and then provide detailed plans for reducing the risk and monitoring your virtualization security controls in the future. We can also provide guidance on how to incorporate virtualization security into your compliance planning and controls maintenance, as well.

Find Out More

Sword & Shield has been outsmarting cyber-criminals and improving security for enterprises around the world since 1997. Fill out our Consultation Request form or contact us by phone so we can begin securing your future.

U.S. Toll-free: 800-810-1885

International: 865-244-3500

Request a Consultation

Name *
Company
Email *
Phone *
State	Select a StateAlabamaAlaskaArizonaArkansasCaliforniaColoradoConnecticutDelawareDistrict of ColumbiaFloridaGeorgiaHawaiiIdahoIllinoisIndianaIowaKansasKentuckyLouisianaMaineMarylandMassachusettsMichiganMinnesotaMississippiMissouriMontanaNebraskaNevadaNew HampshireNew JerseyNew MexicoNew YorkNorth CarolinaNorth DakotaOhioOklahomaOregonPennsylvaniaRhode IslandSouth CarolinaSouth DakotaTennesseeTexasUtahVermontVirginiaWashingtonWest VirginiaWisconsinWyoming
How can we help you today?
Spam Protection	Type this:
Sales answers requests within 1 business day and usually within a few hours.