Cloud
Security
July 17, 2020 By Michele Kersey < 1 min read

IBM Cloud again expands compliance for Infrastructure and Platform as a Service (IaaS and PaaS) offerings with the Payment Card Industry Data Security Standard (PCI DSS).

IBM Cloud Platform completes annual PCI DSS assessments using an approved Qualified Security Assessor (QSA), and the resulting Attestations of Compliance (AOCs) and Service Responsibility Matrix guides are available upon client request. Auditors review in-scope IBM Cloud Infrastructure and PaaS services for compliance under PCI DSS version 3.2.1 at Service Provider Level 1. 

Clients are responsible for the storing, processing, and transmission of their cardholder data, and may create cardholder data environments (CDEs) that can store, transmit, or process cardholder data using IBM Cloud Platform services. Clients can use the IBM Cloud AOCs and SRM guides when seeking their own PCI DSS certifications. It is the responsibility of the client to document and operate CDEs and applications built using IBM Cloud Platform services in a PCI DSS-compliant manner. 

Adding to the compliant IBM Cloud Infrastructure and PaaS services previously assessed under the PCI DSS are the following:

Learn more

A full list of PCI DSS-ready IBM Cloud Platform services and options to request a PCI DSS AOC and SRM guide can be found at the IBM Cloud compliance page.

Michele Kersey
IBM Cloud Compliance Senior Product Manager

More from Cloud
July 16, 2024

How a US bank modernized its mainframe applications with IBM Consulting and Microsoft Azure

9 min read - As organizations strive to stay ahead of the curve in today's fast-paced digital landscape, mainframe application modernization has emerged as a critical component of any digital transformation strategy. In this blog, we'll discuss the example of a US bank which embarked on a journey to modernize its mainframe applications. This strategic project has helped it to transform into a more modern, flexible and agile business. In looking at the ways in which it approached the problem, you’ll gain insights into…

July 16, 2024

The power of the mainframe and cloud-native applications 

4 min read - Mainframe modernization refers to the process of transforming legacy mainframe systems, applications and infrastructure to align with modern technology and business standards. This process unlocks the power of mainframe systems, enabling organizations to use their existing investments in mainframe technology and capitalize on the benefits of modernization. By modernizing mainframe systems, organizations can improve agility, increase efficiency, reduce costs, and enhance customer experience.  Mainframe modernization empowers organizations to harness the latest technologies and tools, such as cloud computing, artificial intelligence,…

July 16, 2024

Modernize your mainframe applications with Azure

4 min read - Mainframes continue to play a vital role in many businesses' core operations. According to new research from IBM's Institute for Business Value, a significant 7 out of 10 IT executives believe that mainframe-based applications are crucial to their business and technology strategies. However, the rapid pace of digital transformation is forcing companies to modernize across their IT landscape, and as the pace of innovation continuously accelerates, organizations must react and adapt to these changes or risk being left behind. Mainframe…

IBM Newsletters

 Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters