In the age of payment card breaches, PCI compliance is a top priority for merchants and organizations that process electronic payments. But what difference does it make when its PCI compliance in the cloud? Steve Neville of Trend Micro shares insight.
"The great news is that the [PCI compliance] requirements are generally the same, but what really changes is who's in control of what," says Neville, Director of Cloud & Data Center Security at Trend Micro.
What makes compliance in the cloud unique?
"When you think about the traditional security model ... and having to do PCI audit in the data center, organizations have a very clear picture of what they own with respect to security - everything," Neville says. "With the shared security model, it's also pretty clear, but it's definitely different. And that's where we get some confusion."
In this interview about PCI compliance in the cloud, Neville discusses:
Unique cloud considerations; How the cloud can make compliance easier; Feedback from Trend Micro customers who have positive results to report.Neville is responsible for Trend Micro's market-leading Cloud and Data Center Security Solution and leads a team focused on ensuring that strategic direction and message are aligned to where customers are today - as well as tomorrow.
In security technologies, his practical experience covers a wide range of data center and cloud security technologies, as well as identity-focused security including strong authentication, federation, and fraud detection systems. Prior to Trend Micro, Neville held senior management positions at Entrust, as well as a dynamic online gaming startup.