IBM Public Cloud Expands ISO27K Certifications for PaaS and VPC Products

1 min read

New services available in 2021 have completed their ISO27K audits.

IBM Cloud PaaS offerings that recently achieved ISO27K certification include the following:

ISO27K certification illustrates IBM’s continuing commitment to privacy, security and compliance. View the current ISO27K certificates and product list for hundreds of IBM PaaS and SaaS products, including the newly audited Public Cloud services listed above:

All of the IBM services in the certified product listing are also in scope for the IBM Cloud Services Cloud Security Alliance (CSA) Security, Trust, Assurance and Risk (STAR) Consensus Assessments Initiative Questionnaire (CAIQ) Level 1 (Self-Assessment), published on the CSA STAR Registry.

Learn more

  • ISO/IEC 27001:2013: Information technology — Security techniques — Information security management systems — Requirements 
  • ISO/IEC 27017:2015: Information technology — Security techniques — Code of practice for information security controls based on ISO/IEC 27002 for cloud services 
  • ISO/IEC 27018:2019: Information technology — Security techniques — Code of practice for protection of personally identifiable information (PII) in public clouds acting as PII processors 
  • ISO/IEC 27701:2019: Security techniques — Extension to ISO/IEC 27001 and ISO/IEC 27002 for privacy information management — Requirements and guidelines 

Be the first to hear about news, product updates, and innovation from IBM Cloud