There are various types of virtualization from a technical standpoint, but the one discussed in this paper is known as server or full virtualization, which is the most prevalent type used for production.

With a compelling and seemingly assured set of benefits to be realized, it seems obvious that virtualization solutions are poised to take today's enterprises by storm. As this occurs, however, consideration will need to be given to the impact that virtualization will have on security. Changes will inevitably need to be made to ensure that the resulting hybrid environment of virtual and physical computing systems remains sufficiently protected.

It is important for organizations to take the following steps as they move to virtualization:

• Understand what virtualization is and how it will offer concrete benefits for your organization. Provide a clear business case of these benefits
• Assess the impact of virtualization on your organization's security. Follow the best practices mentioned here, such as continuing to use traditional security practices where applicable, implementing a segmented trust model, and avoiding VM sprawl with careful management
• Investigate where existing security technologies may be sufficient and where they may need to be supplemented with new virtual technologies. Have a clear understanding of the pros and cons of various approaches