Cloud
Security
August 11, 2020 By Kaleigh Bovey 2 min read

Maintain security, compliance, and control of VMware regulated workloads in the world’s first public cloud for financial services.

Financial institutions and regulated industries undergoing digital transformation and hybrid cloud adoption face the unique challenges of protecting an ever-increasing attack surface and maintaining compliance with industry and regulatory requirements. To protect their businesses, enterprises need continuous visibility into workloads and must maintain a “full-stack” understanding of their workload vulnerabilities and configuration issues at the infrastructure, platform, and application level.

In November 2019, IBM announced it had designed a public cloud for financial services built on IBM Cloud. IBM Cloud for Financial Services is the only public cloud platform with the framework in place to support regulatory workloads with automated security and industry-leading encryption services.

A secure, automated solution for financial services VMware customers

IBM Cloud for VMware Regulated Workloads is part of the IBM Cloud for Financial Services solution set and utilizes its policy framework, which deploys a shared-responsibility model for implementing controls. It is designed to enable financial institutions and their ecosystem partners to confidently host apps and workloads in the cloud and be able to demonstrate regulatory compliance significantly faster and more efficiently than they are today. In fact, the policy framework is designed to demonstrate regulatory compliance on an ongoing basis, rather than every few months.

With IBM Cloud for VMware Regulated Workloads, clients can do the following:

  • More-effectively implement and govern security controls in the cloud.
  • Ensure auditing of all cloud administration.
  • Help protect business critical data assets.
  • Prioritize meeting IT compliance for various national or industrial entities.

Enhancing VMware vCenter Server on IBM Cloud for regulated workloads

IBM Cloud for VMware Regulated Workloads is a secure, automated reference architecture that enhances VMware vCenter Server on IBM Cloud to deliver a security-rich, high-performance platform for VMware workloads in regulated industries.

The reference architecture is a prescriptive solution and is comprised of three dedicated and isolated, purpose-built layers with a set of services included in the management plane. IBM Cloud for VMware Regulated Workloads is ideal for regulated industries, inclusive of banking and financial services. This solution is available in nearly 35 global data centers and has additional add-on services available, like Veeam and Zerto services for business continuity and disaster recovery.

Key attributes of IBM Cloud for VMware Regulated Workloads

Isolation

  • Separate management control and monitoring plane
  • Separate edge cluster and gateway management with isolation from public internet
  • Network management to isolate software-defined networking (SDN) control plane from workload clusters

Access restrictions

  • Identity and access management (IAM)
  • Role-based administration and user access

Policies

  • Unified security and network policies across management stack and workload clusters for both virtual machines (VMs) and containers

Encryption

  • Integrated key control with granular encryption
  • Key management options like bring your own key (BYOK) and keep your own key (KYOK) encryption services
  • Highest level encryption key protection with FIPS 140-2 Level 4

Compliance

  • Continuous compliance management auditing
  • Monitoring and prevention

Backup and disaster recovery

  • Data and virtual machine backup
  • Disaster recovery and high availability clusters (optional)

Management

  • Two management options to fit business needs
  • Fully customer-managed, single-tenant option with root hypervisor access control
  • IBM-managed, multi-tenant option with IBM managing the hypervisor

Get started

As clients continue to migrate and modernize their VMware workloads on IBM Cloud, especially regulated and mission critical business workloads, security of these assets is of utmost priority.

Find out more about IBM Cloud for VMware Regulated Workloads and check out how to get started.

Was this article helpful?
YesNo
Kaleigh Bovey
WW Product Marketing Manager

More from Cloud
July 2, 2024

New 4th Gen Intel Xeon profiles and dynamic network bandwidth shake up the IBM Cloud Bare Metal Servers for VPC portfolio

3 min read - We’re pleased to announce that 4th Gen Intel® Xeon® processors on IBM Cloud Bare Metal Servers for VPC are available on IBM Cloud. Our customers can now provision Intel’s newest microarchitecture inside their own virtual private cloud and gain access to a host of performance enhancements, including more core-to-memory ratios (21 new server profiles/) and dynamic network bandwidth exclusive to IBM Cloud VPC. For anyone keeping track, that’s 3x as many provisioning options than our current 2nd Gen Intel Xeon…

July 2, 2024

IBM and AWS: Driving the next-gen SAP transformation  

5 min read - SAP is the epicenter of business operations for companies around the world. In fact, 77% of the world’s transactional revenue touches an SAP system, and 92% of the Forbes Global 2000 companies use SAP, according to Frost & Sullivan.   Global challenges related to profitability, supply chains and sustainability are creating economic uncertainty for many companies. Modernizing SAP systems and embracing cloud environments like AWS can provide these companies with a real-time view of their business operations, fueling growth and increasing…

July 2, 2024

Experience unmatched data resilience with IBM Storage Defender and IBM Storage FlashSystem

3 min read - IBM Storage Defender is a purpose-built end-to-end data resilience solution designed to help businesses rapidly restart essential operations in the event of a cyberattack or other unforeseen events. It simplifies and orchestrates business recovery processes by providing a comprehensive view of data resilience and recoverability across primary and  auxiliary storage in a single interface. IBM Storage Defender deploys AI-powered sensors to quickly detect threats and anomalies. Signals from all available sensors are aggregated by IBM Storage Defender, whether they come…

IBM Newsletters

 Get our newsletters and topic updates that deliver the latest thought leadership and insights on emerging trends.
Subscribe now More newsletters