Presentation is loading. Please wait.

Presentation is loading. Please wait.

NSX Data Center for Security

Published byBenas Urbonas Modified over 5 years ago

Similar presentations

Presentation on theme: "NSX Data Center for Security"— Presentation transcript:

1 NSX Data Center for Security
CHALLENGES NSX Data Center for Security Cheat Sheet Rate of security breaches is increasing, despite increased security spending Data Breaches PERSONAS Lack of internal controls Few internal network controls exist to protect applications from lateral spread of attacks VP of Security/CISO Prevent data breaches Reduce security risk Maintain compliance Manage security operations Director of Networking Balance security with usability and accessibility Ensure 24/7 network uptime Reduce troubleshooting time Director of Infrastructure Do more with less Ensure infrastructure security, availability, and reliability Consolidate data centers Improve mobility support Applications and data change rapidly, security policies can’t keep up Constant change Apps and data are highly distributed across workloads, sites, and clouds – the traditional perimeter has dissolved Distributed apps and data Very little visibility exists into east-west traffic between applications in the data center Visibility DISCOVERY Have you failed an audit or suffered a data breach recently? Do you have good insight into east-west data center traffic? Do you contend with managing disparate security policies on-prem and in the cloud? What do you currently use to secure east-west data center traffic? How do you detect and respond to threats on data center endpoints? Is it difficult to maintain security policies as applications change over time? Is your network security provisioning automated?

2 Dynamic Service Insertion Network & Application Visibility
SOLUTION COMPONENTS Micro-segmentation Micro-segment applications to prevent the lateral spread of threats throughout data center Dynamic Service Insertion Insert third party security services into the hypervisor to improve security posture and increase data center traffic efficiency Network & Application Visibility Gain visibility into application communication across data center to implement effective security policies. TRIGGERS/USE CASES Recent data breach or failed audit VDI project or newly deployed VDI environment Security hardware/software refresh (e.g. firewall, AV) Looking to embrace hybrid or cloud environment OBJECTION HANDLING VMware software is usually owned by the VI Admin, with NSX I will lose control of the network. NSX deployments that are most successful are led by the network team, but in close partnership with multiple teams including security and VI teams. However, NSX is a networking and security tool built specifically for Network Operations and Network Security practitioners. There is often a misperception that NSX removes power from networking practitioners. The features and capabilities are designed to solve their challenges and to give them more power and flexibility through the advantages of software. Micro-segmentation seems complicated and we don’t know where to start. There are a few hurdles to a micro-segmented environment that can trip up an organization: determining which policies to create, determining necessary security groups, maintaining policies over time. NSX Data Center’s built-in features and additional management tools address these challenges (Automatic rule/security group creation, automated provisioning capabilities, etc.) and VMware has best-practice guides to help customers through the process (5 Steps to Micro-segmentation). Can I replace my physical firewalls used to secure east-west traffic with NSX Data Center? Many customers find that they can replace or reduce the number of physical firewalls in their environment by leveraging Dynamic Service Insertion and the NSX distributed firewall capabilities to secure east-west traffic. WHY NSX DATA CENTER Intrinsic security, not bolted-on Security as agile and scalable as the apps and data it protects Enforce least-privilege across entire infrastructure RESOURCES NSX Vault Page Cyber Hygiene White Paper Virtual Network Assessment (VNA) Forrester Zero Trust White Paper Micro-segmentation Solution Brief Micro-segmentation for Dummies WHAT YOU NEED TO DO See it – Share demos on YouTube Try it – Use the Virtual Network Assessment to show customers what east-west traffic looks like in their environment today Try it – Leverage Hands-On-Labs to provide customers their own test-drive experience with the products Use this Cheat Sheet as your go-to resource to start conversations about Modern Security with your customers

Download ppt "NSX Data Center for Security"

Similar presentations

Trusted End Host Monitors for Securing Cloud Datacenters Alan Shieh †‡ Srikanth Kandula ‡ Albert Greenberg ‡ †‡

Trusted End Host Monitors for Securing Cloud Datacenters Alan Shieh †‡ Srikanth Kandula ‡ Albert Greenberg ‡ †‡
Unified Logs and Reporting for Hybrid Centralized Management

Unified Logs and Reporting for Hybrid Centralized Management
Copyright 2011 Trend Micro Inc. Trend Micro Web Security- Overview.

Copyright 2011 Trend Micro Inc. Trend Micro Web Security- Overview.
Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.

Cloud Attributes Business Challenges Influence Your IT Solutions Business to IT Conversation Microsoft is Changing too Supporting System Center In House.
How to protect your Virtual Datacenter Michiel van den Bos.

How to protect your Virtual Datacenter Michiel van den Bos.
© 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker.

© 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker May 24, 2012 Page: 1 © 2012-Robert G Parker.
Dell Connected Security Solutions Simplify & unify.

Dell Connected Security Solutions Simplify & unify.
1 CISCO SAFE: VALIDATED SECURITY REFERENCE ARCHITECTURE What It Is Business Transformation Top Questions To Ask To Initiate The Sale Where It Fits KEY.

1 CISCO SAFE: VALIDATED SECURITY REFERENCE ARCHITECTURE What It Is Business Transformation Top Questions To Ask To Initiate The Sale Where It Fits KEY.
Private Cloud: Manage Data Center Services Business Priorities Presentation.

Private Cloud: Manage Data Center Services Business Priorities Presentation.
VMware NSX and Micro-Segmentation

VMware NSX and Micro-Segmentation
CUTTING COMPLEXITY – SIMPLIFYING SECURITY INSERT PRESENTERS NAME HERE XXXX INSERT DATE OF EVENT HERE XXXX.

CUTTING COMPLEXITY – SIMPLIFYING SECURITY INSERT PRESENTERS NAME HERE XXXX INSERT DATE OF EVENT HERE XXXX.
©2015 EarthLink. All rights reserved. 1071-07640 Cloud Express ™ Optimize Your Business & Cloud Networks.

©2015 EarthLink. All rights reserved Cloud Express ™ Optimize Your Business & Cloud Networks.
© 2006 Cisco Systems, Inc. All rights reserved.Presentation_ID 1 Transforming Server Virtualization with Cisco VN-Link Belmont Chia Consulting System Engineer.

© 2006 Cisco Systems, Inc. All rights reserved.Presentation_ID 1 Transforming Server Virtualization with Cisco VN-Link Belmont Chia Consulting System Engineer.
© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security.

© Copyright 2013 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. State of Network Security.
“ For A Moment, I Had A Feeling Of Total Security. Then Someone Said Cloud! “

“ For A Moment, I Had A Feeling Of Total Security. Then Someone Said Cloud! “
Microsoft Azure and ServiceNow: Extending IT Best Practices to the Microsoft Cloud to Give Enterprises Total Control of Their Infrastructure MICROSOFT.

Microsoft Azure and ServiceNow: Extending IT Best Practices to the Microsoft Cloud to Give Enterprises Total Control of Their Infrastructure MICROSOFT.
Mobile Security Solution Solution Overview Check Point Mobile Threat Prevention is an innovative approach to mobile security that detects and stops advanced.

Mobile Security Solution Solution Overview Check Point Mobile Threat Prevention is an innovative approach to mobile security that detects and stops advanced.
New cloud services demand new security solutions. The evolving cloud landscape is paving the way for modern and more sophisticated technology. Among the.

New cloud services demand new security solutions. The evolving cloud landscape is paving the way for modern and more sophisticated technology. Among the.
Despite of spending high on digital information security, organizations still remain exposed to external threats. However, data center providers are helping.

Despite of spending high on digital information security, organizations still remain exposed to external threats. However, data center providers are helping.
DATS Portfolio. PARTNERS & Solutions END TO END DATA CENTER SOLUTIONS Building a robust, resilient IT infrastructure. Lenovo System x combines unbeatable.

DATS Portfolio. PARTNERS & Solutions END TO END DATA CENTER SOLUTIONS Building a robust, resilient IT infrastructure. Lenovo System x combines unbeatable.

Similar presentations

Ads by Google