Overview
Explore security and compliance best practices for existing infrastructure and cloud environments in this 46-minute Red Hat conference talk. Discover how to implement secure processes across Red Hat Enterprise Linux, OpenStack private clouds, and third-party solutions. Learn from customer implementations, including maintaining PCI DSS compliance and other mandates. Dive into configuration, customization, management, networking, and interoperability across footprints, workloads, and policies. Gain insights on maintaining compliance for HIPAA, Sarbanes Oxley, PCI, and other frameworks. Examine topics such as Cloud Control Matrix, OpenSCAP, third-party verification, audit processes, compliance initiatives, SCAP capabilities, open architecture, IDM, admin retraining, file integrity monitoring, and logging invalid login attempts. Understand the importance of SIMP and how to address various security challenges in modern IT ecosystems.
Syllabus
Introduction
Customers need a compliant environment
Different frameworks
Standards
Cloud Control Matrix
OpenStack
Recap
Certification
Cheat Sheet
Summary
Onyx Point
OpenSCAP
Third party verification
Audit D
Compliance initiatives
Questions
SCAP
Open SCAP
SCAP capabilities
SCAP security guide
Open architecture
Can cloud forms help
The line of demarcation
What is IDM
Admin retraining
Training
File integrity monitoring
Logging invalid login attempts
Solution
Why SIMP
Wrap up
Taught by
Red Hat