Mark Gaydos wrote an article called “Ops or Security: Who’s Responsible for Securing Virtualization?” that hints at the virtualization survey results that we will be publishing next week, exploring how organizations are assigning responsibility for sec…

http://rationalsecurity.typepad.com/blog/2008/06/security-pros-s.html

I summarize thusly:

“I don’t think it’s that the security folks *want* to surrender the responsibility, I think
it’s that they never had it in the first place the moment the V-word entered the
picture.

It ain’t rocket science. It ain’t voodoo. It ain’t a tectonic buck-passing conspiracy.
It’s access, separation of duties (by force,) visibility and capability, plain and simple.”

/Hoff