IBM Expands Cloud Security and Compliance Center

IBM Cloud Security and Compliance Center

In order to assist businesses in reducing risk and safeguarding data across their hybrid, multicloud environments and workloads, IBM recently announced the expansion of its IBM Cloud Security and Compliance Center. The solution suite supports clients’ requirements for resiliency, performance, security, and compliance while assisting in the reduction of operational costs as they search for ways to manage changing global regulations and address new threats that may arise throughout the supply chain. 

“IBM Cloud has a long history of working with clients in financial services and other highly regulated industries, especially when it comes to helping them to drive innovation while protecting their sensitive data,” stated Rohit Badlaney, General Manager, IBM Cloud Product and Industry Platform. “The growth of the IBM Cloud Security and Compliance Center demonstrates our ongoing commitment to industry specific capabilities that support our clients in overcoming real world business challenges.

Customers can, for instance, make use of the IBM Cloud Framework for Financial Services, which can assist them in addressing changing rules, laws, and regulations pertaining to cloud risk.  The new features demonstrate our dedication to assisting customers with their hybrid cloud modernization journeys and are built with security, compliance, privacy, and trust at the top of our product roadmap.

More than 77 percent of global business leaders, according to IBM research, have adopted a hybrid cloud strategy, but more than half of those surveyed are still worried about security and think compliance in the cloud is too difficult to maintain. The next evolution of the IBM Cloud Security and Compliance Center aims to assist clients in continuously monitoring and managing their security and compliance from a central dashboard across their hybrid and public cloud environments not just IBM Cloud to help clients overcome these difficulties.

With the recent addition of IBM Cloud Security and Compliance Center Data Security Broker, created in partnership with Baffle, Inc., the capabilities of the solution suite now include application-level security in addition to compliance posture management and workload protection features.

“As more businesses choose to manage applications of all kinds across SaaS, PaaS, IaaS, and on-premises, they need centrally automated and managed technologies that can scale the implementation of security and compliance capabilities. According to Frank Dickson, VP of Security & Trust at IDC, “The IBM Security and Compliance Center addresses this need for holistic protection, which is especially critical for organizations in highly regulated industries that manage sensitive data, such as financial services.

The “IBM Cloud Security and Compliance Center Data Security Broker will support more scalable data protection, furthering IBM’s commitment to building technology that creates enhanced outcomes.”

To protect sensitive data used in business applications and AI workloads, the new IBM Cloud Security and Compliance Center Data Security Broker solution offers a transparent layer of data encryption with format-preserving encryption and anonymization technology.

“IBM Cloud Security and Compliance Center Data Security Broker is the result of a year-long effort to provide IBM customers with an efficient data protection solution. According to Ameesh Divatia, CEO of Baffle, Inc., businesses want to operate with greater scale and agility to modernize the challenges of the shared responsibility model with a cloud provider. “Enterprises can confidently protect their highly sensitive, valuable data as it enters the cloud and is shared across the entire analytics pipeline by combining the powerful IBM Cloud platform and Baffle’s unique data-centric security approach,” according to Baffle.

The expanded IBM Cloud Security and Compliance Center suite will include a number of new capabilities in addition to the Data Security Broker to support clients, particularly those in regulated industries, and address industry security, compliance, and data residency requirements:

• In order to protect hybrid, multicloud environments and workloads, enhanced cloud security posture management (CSPM), workload protection (CWPP), and infrastructure entitlement management (CIEM) are used. In order to support the rapid identification and correction of critical vulnerabilities, the workload protection capabilities are built to prioritize vulnerability management.
• This includes the open-source Falco-based container threat detection, which uses cutting-edge machine learning and behavioral analysis to help identify and stop threats in almost real-time.
• Without requiring developers to have indepth compliance knowledge or engage in difficult postdeployment detection and mitigation, intelligent automation technology with deployable architectures has the potential to accelerate the adoption of secured cloud services.
• Integrations with risk management solutions to provide visibility into the risk posture of third and fourth parties. Organizations can use this kind of visibility to examine their own risk as well as supply chain threats to meet their important security and compliance requirements.
• In order to assist clients in meeting new regulatory compliance standards, expanded compliance capabilities will be made available in Q42023. These capabilities will include the automation of compliance control implementation and management as well as centralized data collection.

The mission of IBM to assist clients in safeguarding their workloads in hybrid, multicloud environments, as well as the sensitive data contained therein, is furthered by the company’s expansion of the IBM Cloud Security and Compliance Center. Additional partner integrations are included in the generally accessible IBM Cloud Security and Compliance Center.

News source: