Virtualization of clients and servers, and its accompanying impact on networks and storage, is a hot topic in information technology (IT) and therefore a hot topic in security. There are multiple perspectives regarding how virtualization impacts security. Some suggest that its isolation properties make virtualization beneficial to security while others say that the added complexity of the hypervisor and opportunity to "escape the VM" are detrimental to security. "The answer" to the question of security rarely has an absolute value; it is a matter of degrees. In any case, for most enterprises the decision points are not whether to virtualize or not, because virtualization is here. The decision points involve proactivity and reactivity–determining where and when to apply controls that are sufficient in the environment based on risk tolerance. Ultimately, whether virtualization is bane or boon for security depends on how the systems are configured, deployed, and managed.