Organizations expect to keep their data secure by reducing the risk of data theft, cyberattack, or unauthorized access. Organizations also must often comply with one or more regulations from government standards to private standards, such as the National Institute of Standards and Technology (NIST) and Defense Information Systems Agency Security Technical Implementation Guides (DISA STIG). Ensuring that your vSphere environment is in compliance with such standards involves understanding a broader set of considerations including people, processes, and technology.

A high-level overview of security and compliance topics that require attention helps you plan your compliance strategy. You also benefit from other compliance-related resources on the VMware Web site.