IBM Cloud® compliance: ISO 31000
Illustration showing a person interacting with a computer interface, around which are a security shield and a globe on a pedestal
What is ISO 31000?

The ISO 31000 is a family of standards issued starting in 2009 by the International Organization for Standardization (ISO) and is designed to help organizations manage risk. The first standard in the series, the ISO 31000:2018 is a set of risk management guidelines that focuses on the design and implementation of a risk management framework—a process to identify and minimize the harm caused by uncertainties and unforeseen events.

An organization with an ISO-31000-compliant risk management process has a level of assurance, as well as operational continuity, economic resilience and stability—even in the face of unpredictable events. 

Reports and other documentation

IBM 31000 - IBM Cloud® Infrastructure Certificate 

IBM position

IBM Infrastructure Management System (IMS) and IBM Infrastructure as a Service (IaaS) offerings have a risk management framework in place that is ISO 31000:2018 compliant, as certified by Bureau Veritas.

IBM ISO 31000 certificates are published and generally available. The services listed below are ISO 31000 certified. Services below issue ISO certificates at least once each year.

Take the next step

Questions about a compliance program? Need a protected compliance report? We can help.

See more compliance programs