SOC 1, SOC 2 and SOC 3
An SOC 1 report focuses on controls at the service organization that would be useful to user entities and their auditors for planning a financial statement audit of the user entity and evaluating internal control over financial reporting at the user entity. SOC 2 and SOC 3 reports are designed to allow service organizations to communicate information about their system description in accordance with specific criteria related to availability, security and confidentiality.
Request the IBM Cloud IaaS SOC 1 Bridge Letter through the customer portal.
To request the IBM Cloud SOC 1 Bridge Letter for all other cloud services, contact an IBM Sales representative.
Request the IBM Cloud IaaS SOC 1 and/or SOC 2 report through the customer portal.
To request the IBM Cloud SOC1 and/or SOC 2 report for all other cloud services, contact an IBM Sales representative.
View our IBM Cloud IaaS SOC 3 report (PDF, 495 KB)