March 30, 2020 By jason-mcalpin 2 min read

IBM Cloud PCI DSS Guidance provides the framework for how clients can deploy PCI DSS compliant systems and applications on IBM public cloud.

The Payment Card Industry Data Security Standard (PCI DSS) was developed to encourage and enhance cardholder data security and facilitate the global adoption of consistent security measures. PCI DSS provides a baseline of technical and operational requirements designed to protect account information (including card number, expiration date, and verification data).

The IBM Cloud PCI DSS guide includes a high-level overview of PCI DSS requirements, a responsibility matrix summary, and example architectures to help clients deploy and operate a payment processing system to properly handle credit card data in a secure, compliant environment on IBM Cloud. 

Example architecture end-to-end secure flow for a sample IBM Cloud Kubernetes Service application

This guide is intended for IBM Cloud clients who require their IBM Cloud environment and related applications to be PCI DSS-compliant. Readers should be familiar with the latest PCI DSS requirements, as well as have some background on IBM Cloud Infrastructure-as-a-Service (IaaS) and Platform-as-a-Service (PaaS) architecture.

IBM Cloud clients must independently analyze their particular environments and use cases in order to verify that their own control environment meets the requirements set forth by the PCI Security Standards Council (SSC) and cannot rely solely on this guide. No information in this guide can, or is intended to, supplant any guidance provided to the client by a Qualified Security Assessor (QSA,) the PCI SSC, or the entity’s acquirer.

Learn more

More from Announcements

IBM named a Leader in Gartner Magic Quadrant for SIEM, for the 14th consecutive time

3 min read - Security operations is getting more complex and inefficient with too many tools, too much data and simply too much to do. According to a study done by IBM, SOC team members are only able to handle half of the alerts that they should be reviewing in a typical workday. This potentially leads to missing the important alerts that are critical to an organization's security. Thus, choosing the right SIEM solution can be transformative for security teams, helping them manage alerts…

IBM and MuleSoft expand global relationship to accelerate modernization on IBM Power 

2 min read - As companies undergo digital transformation, they rely on APIs as the backbone for providing new services and customer experiences. While APIs can simplify application development and deliver integrated solutions, IT shops must have a robust solution to effectively manage and govern them to ensure that response times and costs are kept low for all applications. Many customers use Salesforce’s MuleSoft, named a leader by Gartner® in full lifecycle API management for seven consecutive times, to manage and secure APIs across…

IBM Consulting augments expertise with AWS Competencies: A win-win for clients 

3 min read - In today's dynamic economic landscape, businesses demand continuous innovation and speed of execution. At IBM Consulting®, our unwavering focus on partnerships and shared commitment to delivering enterprise-level solutions to mutual clients have been core to our success.   We are thrilled to announce that IBM® has recently gained five competencies from Amazon Web Services (AWS) in vital domains including Cloud Operations, Internet of Things (IoT), Life Sciences, Mainframe Modernization, and Telecommunications. With these credentials, IBM further establishes its position as a…

IBM Newsletters

Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters