The Virtualization Practice has posted a podcast with me on PCI compliance in virtual environments
On 10/6 was held the Virtualization Security Podcast featuring Davi Ottenheimer in his role as a QSA. Davi holds down many roles working with companies such as VMware, yet he maintains his QSA credentials and applies his knowledge of PCI Compliance. In this podcast we ask the question, is a virtual environment always mixed-mode and what to do if your QSA does not have the knowledge required to do the job?
The host has tried to be as provocative as ever by offering a follow-up statement with an absolute position:
I believe any hypervisor based PCI workload is always mixed mode regardless of the type of VMs