November 13, 2018 By Luis Lara Pezzi 2 min read

Achieve compliance while reaping the benefits of the cloud

With consumer behaviour changing, companies need to adapt fast. We see this need in all sectors, including banking. However, being a highly regulated industry can slow down the innovation process. So, how do you stay compliant and address customer needs simultaneously?

For the European Union, the European Banking Authority (EBA)1 issued a set of recommendations for banks in December 2017. The recommendations shed some light on the controls needed to ensure compliance and provided a regulatory convergence for banks in the EU in relation to the cloud. With this guidance, it is now clear to banks and Cloud Service Providers on how to achieve compliance while reaping the benefits of the cloud.

Banks benefit from using IBM Cloud to stay compliant in a number of ways

The first way that banks can benefit from using IBM Cloud is through our expertise around financial compliance. Promontory Financial Group, an IBM Company, is helping clients resolve critical issues, particularly those with a regulatory dimension. Promontory professionals have unparalleled regulatory experience and insight and provide our clients with frank, proactive advice informed by best practices and regulatory expectations.

Second, to help banks take a risk-based approach when deploying to IBM Cloud, we clearly document the technical and organizational measures we take around data security and privacy. These are defined for IBM Cloud in the Data Security and Privacy principles and additional specifics are covered in each IBM Cloud Service Data Sheet. Moreover, these two documents also define the business continuity plan and the data hosting and data processing locations each service uses. All this information is publicly available, simplifying the risk assessment process. If you need additional security for a workload, IBM can provide you with the extra bit.

These security measures are accompanied by independent third-party certifications, showing IBM Cloud compliance with globally accepted standards. For the specific audit and access rights required by the EBA recommendations, we developed a “Cloud Addendum for Financial Services,” which describes the process in detail.

Finally, and to help further with risk assessment, we give our customers the option to exit an IBM Cloud service if we make changes that cannot be accepted for legal reasons. Moreover, we shall provide customers assistance to transfer the service to another cloud provider or to on-premise if they prefer.

In summary, IBM Cloud certifications and the additional information we offer help banks make a decision when outsourcing to IBM Cloud so that the client’s required measures are in place to comply with regulations.

To learn more, read how IBM supports banks and helps them stay compliant with the European Banking Authority recommendations on cloud computing.

More from Announcements

Enabling customers to streamline document management with IBM watsonx.ai

2 min read - At Accusoft, our mission is to help organizations solve their most complex content workflow challenges by helping them adopt content processing, conversion and automation solutions. We accomplish this through our flagship product, PrizmDoc, which enables developers to enhance their applications with in-browser document viewing and collaboration functionality.  Over the past several years, we’ve been closely monitoring the evolving role of artificial intelligence (AI) in delivering cutting-edge solutions to our customers. Unlike many competitors who hastily incorporate AI  to check a…

Success and recognition of IBM offerings in G2 Summer Reports  

2 min read - IBM offerings were featured in over 1,365 unique G2 reports, earning over 230 Leader badges across various categories.   This recognition is important to showcase our leading products and also to provide the unbiased validation our buyers seek. According to the 2024 G2 Software Buyer Behavior Report, “When researching software, buyers are most likely to trust information from people with similar roles and challenges, and they value transparency above other factors.”  With over 90 million visitors each year and hosting more than 2.6…

IBM named a Leader in Gartner Magic Quadrant for SIEM, for the 14th consecutive time

3 min read - Security operations is getting more complex and inefficient with too many tools, too much data and simply too much to do. According to a study done by IBM, SOC team members are only able to handle half of the alerts that they should be reviewing in a typical workday. This potentially leads to missing the important alerts that are critical to an organization's security. Thus, choosing the right SIEM solution can be transformative for security teams, helping them manage alerts…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters