A new survey from Symantec has found that while small businesses have a strong interest in server virtualization, they are not necessarily cognizant of the risks and procedures required to secure and protect their virtual environments. This puts smaller businesses that have deployed virtualization at a heightened security risk, even as their limited IT skills may be holding some back from implementing the technology.
The above conclusion was drawn from the 2011 Small Business Virtualization Poll (pdf), which surveyed 658 respondents in 28 countries around the world. The diagram below (used with permission from Symantec) sums up the key findings, which I briefly outline below:
I think a takeaway from the survey would be the need for SMBs to re-examine their server virtualization security.
One way I can think of would be to protect virtualized infrastructure on a per-server basis, which can be achieved by employing security solutions designed with virtualized environments in mind. This is an especially pertinent move given that a single physical server can accommodate anything from two to 10 (or more) virtual servers; traffic flowing between them may be invisible to traditional security and monitoring tools.
What are some measures that your SMB employs to protect your virtualized infrastructure?