Tw2946 gott imc_compliance_final
Upcoming SlideShare
Loading in...5
×
 

Tw2946 gott imc_compliance_final

on

  • 405 views

 

Statistics

Views

Total Views
405
Slideshare-icon Views on SlideShare
405
Embed Views
0

Actions

Likes
0
Downloads
17
Comments
0

0 Embeds 0

No embeds

Accessibility

Categories

Upload Details

Uploaded via as Microsoft PowerPoint

Usage Rights

© All Rights Reserved

Report content

Flagged as inappropriate Flag as inappropriate
Flag as inappropriate

Select your reason for flagging this presentation as inappropriate.

Cancel
  • Full Name Full Name Comment goes here.
    Are you sure you want to
    Your message goes here
    Processing…
Post Comment
Edit your comment
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.
  • To start this presentation, let’s look at how industry trends are creating some real networking challenges There is a virtualization wave sweeping across Data Centers. A few years ago a small % of servers were running hypervisors. Today many servers are running hypervisors and supporting multiple applications. When it comes to the use of cloud services, business today is actually outpacing IT. Business users have been quick to recognize the cloud’s advantages in speeding innovation, accelerating business processes, and reducing time to revenue. But the management of a private cloud, or a mixed environment – hybrid/public cloud is presenting some major challenges like orchestrating the movement of the load.How people in this room have phones and other devices that are not approved or supported by your IT organization? The consumerization of IT is another trend adding to the challenges of networking. Changes in the workforce, an increasingly mobile and remote workforce are placing the same demand on wireless networks as there are for wired networks.The pace of change is accelerating.These trends leading to greater complexity and to requirements for increasing security.Management today are discreet separate components for servers, storage and networking. They are not federated. This causes complexity and drives up cost of delivering services and extends the time to deliver new applications to users.The bottom line: Changing networking begins with listening to your customers, and these changes are unique opportunities to introduce the richness of our data center offering.

Tw2946 gott imc_compliance_final Tw2946 gott imc_compliance_final Presentation Transcript

  • © Copyright 2012 Hewlett-Packard Development Company, L.P.The information contained herein is subject to change without notice.
  • Management Center5.1 To Help CustomerMeetTheir ComplianceNeedsTW2946Kenneth Gott – IMC RPLMChris Young – Americas IMC VTGJune 2012© Copyright 2012 Hewlett-Packard Development Company, L.P.The information contained herein is subject to change without notice.
  • AgendaCompliance definitionsDemo3 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Compliance Definitions© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Compliance DefinitionsFoundationalSelf-Defined (to start…..)Government mandatedCompliance is also essential to effectively moving business practicesforward5 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Foundational Compliance Foundational - Fault management - Network performance - Process - Efficiency6 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Self-defined Compliance Self-defined (to start…..) - Vendors - Versions - Security - Logging and management7 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Government Mandated Compliance Government mandated - Sarbanes-Oxley - PCI - HIPPA - COSO - COBIT8 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • IT and ComplianceHow can IT help? Many compliance mandates are related to illegal activities or fraud • IT cannot measure or enforce morals • IT is able to restrict users from privileged information, and provide accounting • IT provides auditing of user actions (AAA logging, NetFlow, ACLs/firewalls) • IT can address the mandates that are related to release of information9 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Where To Start With Compliance How to start • Determine compliance standards or frameworks that you must abide by • Identify IT specific requirements • Consult with potential auditors • Design to compliance standard • Implement compliance standard • Check/audit compliance standard • Refine10 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Corporate Compliance ExampleWhat compliance standards/frameworks exist?CorporateNetwork mgmt - “Must have at least 2 Syslog receivers & 2 SNMP trap receivers in everydevice config”Network mgmt - “Must not have more than 4 Syslog receivers”Network mgmt - “Must not use „well-known‟ SNMP community strings”Network mgmt - “Must use ACLs on SNMP community string use”Security - “Must have AAA/TACACS and SSHv2 configured on every device”Security - “Must have AAA/Accounting enabled”Security - “Must use „password 5‟ options – no clear-text, no „password 711 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Corporate Compliance ExampleFor IT, compliance may mean tracking and checking against • Inventory • Device configuration • Device operational characteristicsMy Network Management tool must allow me to • Collect • Validate/check against • Report • Remediate12 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Government Mandated Compliance ExampleWhat compliance standards/frameworks exist?Business PCI DSS Consideration for network IT How might this be achieved? • A set of comprehensive • Build and Maintain a • Config scan for use of requirements for enhancing payment account data security; Secure Network – „public‟, „private‟, „cisco‟ in Developed by the PCI Security Requirement 2: SNMP; Standards Council, including American Express, Discover • Do not use vendor- • „cisco‟, „cisco123‟ and „sdm‟ Financial Services, JCB International, MasterCard supplied defaults for in web UIs (e.g. SDM) Worldwide and Visa system passwords and International, to help facilitate other security the broad adoption of consistent data security parameters measures PCI DSS (formerly VISA CSIP) – Payment card industry data security standard13 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Government Mandated Compliance ExampleLet‟s assume PCI DSS Do not use vendor-supplied default for Build and maintain a Install and maintain a firewall configuration system passwords and other security secure network to protect cardholder data parameters Encrypt transmission of cardholder data Protect cardholder data Protect stored cardholder data across open, public networks Maintain a vulnerability Develop and maintain secure systems and Use and regularly update anti-virus software management program applications Source: https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml14 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Government Mandated Compliance ExampleLet‟s assume PCI DSS(cont.) Implement strong Restrict access to cardholder data by Assign a unique ID to each person with access control business need-to-know computer access measures Regularly monitor and Track and monitor all access to network Regularly test security systems and test networks resources and cardholder data processes Maintain an information Maintain a policy that addresses information security to Identify IT-Specific Requirements security policy Source: https://www.pcisecuritystandards.org/security_standards/pci_dss.shtml15 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • HPIntelligent Management CenterDemo© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Tools To Help Our Clients• Read about the FlexNetwork Architecture• Learn about Intelligent Management Center• Download the trial license of Intelligent Management Center• Learn about networking services from HP Technical Services• Learn about networking career certifications from HP ExpertONE17 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Q&A© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Find out more Attend these sessions Visit these demos After the event • TW2947 • HP • Contact your sales rep Understanding SHM: FlexManagement: the new service Intelligent • Visit The IMC Channel on health management Management Center YouTube at: module from IMC (IMC) http://www.youtube.com/user/th Tue. 11:15 - 12:00 eimcmanagement?feature=resul • HP Virtual ts_main • TW2945 Application Networks Enabling Cloud • Download the Virtual Application Service Delivery with • HP OpenFlow for Networks whitepaper at: HP Intelligent Virtualized Networks http://h20195.www2.hp.com/V2/ Management Center GetPDF.aspx/4AA4- Thur 4:00 – 4:45 0790ENW.pdf Your feedback is important to us. Please take a few minutes to complete the session survey.19 © Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.
  • Thank you© Copyright 2012 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice.