This event has ended. View the official site or create your own event → Check it out
This event has ended. Create your own
View analytic
Wednesday, May 14 • 4:30pm - 5:10pm
Will Your Cloud Be Compliant?

Sign up or log in to save this to your schedule and see who's attending!

Architecting a standards compliant cloud can be difficult. There are emerging cloud specific security standards such as FedRAMP and CSA that should be considered in addition to existing NIST/ISO and PCI-DSS standards. OpenStack workflows and resources that exist today either fully or partially meet these common compliance requirements. We will discuss areas that need work and areas that appear to be in good shape.
The talk includes a study of PayPal’s experience in reviewing OpenStack security as relates to complying with PCI-DSS in their private cloud and existing data center environment. It dives into the many design decisions PayPal made within their environment considering whether to use physical versus logical devices, review hypervisor versus guest compliance, and whether to maintain separate management networks for PCI versus non-PCI traffic.

avatar for Scott Carlson

Scott Carlson

Architect, Cloud Platform Security, PayPal
Scott Carlson has been with PayPal since the end of 2011. He’s spent the last 15 years in the Banking, Education, and Payment sectors perfecting the art of sys-admining, cloud-ifying and in keeping mission critical systems from falling to pieces. In 2013, he spoke at both the VMWorld and OpenStack Conferences on various OpenStack topics.
avatar for Evgeniya Shumakher

Evgeniya Shumakher

Partner Program Manager, Mirantis IT
Evgeniya Shumakher is a Partner Program Manager at Mirantis, where she coordinates and leads efforts to help Mirantis partners navigate the OpenStack ecosystem, and to expand the utility of Mirantis OpenStack to customers via integration of partner products and technologies.

Wednesday May 14, 2014 4:30pm - 5:10pm
Room B102

Attendees (129)