Home cloud Compliance IBM Cloud ISMAP compliance IBM Cloud® compliance: ISMAP
Illustration showing two people standing on platforms, with one person looking at a map display and the other regarding a security shield
What is ISMAP?

The Information System Security Management and Assessment Program (ISMAP) is a
Japanese government program to assess the security of public cloud service providers (CSP). ISMAP approves independent third-party auditors who evaluate and register CSPs and their services to ensure they meet specific security requirements set by the Japanese government, enabling agency usage without the added burden and cost of agency-led assessments.

Reports and other documentation
View the IBM Cloud IaaS and PaaS registration listed on the ISMAP website. (Listing is in Japanese and resides outside ibm.com.)

IBM position

IBM Cloud IaaS, PaaS and VPC were certified for ISMAP by an independent, third-party and certified auditor. The IBM Cloud ISMAP certification helps Japanese government agencies leverage IBM Cloud workloads while meeting security requirements.

IBM Service Descriptions (SD) indicate if a given offering has achieved and maintains ISMAP compliance status. Services below are assessed each year by an independent third-party auditor.

Take the next step

Questions about a compliance program? Need a protected compliance report? We can help.

See more compliance programs