The Federal Information Security Management Act of 2002 (FISMA) was created to ensure the security of data within the federal government. It defines requirements for the information security of federal agencies as well as independent, third-party contractors who handle government data.
In order to be FISMA-compliant, an organization must conduct annual reviews of information security programs to minimize risks with improved speed, cost-effectiveness and efficiency. FISMA compliance is achieved by a cloud service provider (CSP) through the FedRAMP Authorization process.
IBM Cloud for Government is FISMA Impact-Level-High-compliant. IBM Service Descriptions (SD) indicate if a given offering maintains FISMA compliance status. Services below are assessed each year.
In addition to US government certifications and standards, IBM Cloud for Government data centers adhere to global, industry and regional compliance programs.
Services
- Fortigate Security Appliance
- Gateway Appliance
- Hardware Dedicated Firewall
- IBM Cloud Backup
- IBM Cloud Bare Metal
- IBM Cloud Block Storage
- IBM Cloud Direct Link Connect
- IBM Cloud Direct Link Dedicated
- IBM Cloud Direct Link Dedicated Hosting
- IBM Cloud File Storage
- IBM Cloud Load Balancer (Dedicated options)
- IBM Cloud Object Storage (IaaS)
- IBM Cloud Virtual Servers
- Microsoft MySQL
- Microsoft SQL Server
- VMware
- Request IBM FedRAMP Package (PDF)