SECUNOID

PCI DSS is a standard which protects Credit Cardholder information.  The Goal of this program is to render the credit card data useless after it has been processed by the merchant.
The PCI DSS is a multifaceted security standard that includes requirements for security management, policies, procedures, network architecture, software design and other critical protective measures.
For more information you can access following URL's:

Various PKI Implementations currently available

• •Red Hat Certificate Management System
• Project Dogtag (OpenSource version of Redhat, based on Fedora)

A lot of virtualization has happened in organizations without any regard for security.  Security professional can continue to warn businesses about some of the impending security issues with virtualization, don't expect them to secure their environments unless and until a system(s) is compromised.
Although all the attacks are possibilities, none of them have actaully happened.  Some of the possibilities are:

As per the following article: http://www.itworldcanada.com/a/Enterprise-Infrastructure/f103508d-d9a0-4f01-bbf3-394577c59ca5.html

As the security industry matures from managing user id's, firewalls, routers, and servers a capability to track and ensure value provided by security process is in high demand.  Governance, Risk, and Complinace (GRC) is a term coined but vendors to gain a market share in this space.  Some of the players are:

This online community phenomenon is catching up pretty quickly. People are constantly putting their lives online, identity thieves and other criminal minded can very easily perform reconnaissance activities from the comfort of their homes before the unleashing their final attack. Before the advent of social networking websites search engines were a source of wealth of information, especially Google, where all your online information if its spiders can crawl it, ends up in their databases and becomes Google “Property”.