Past Winners

IBM for IBM Cloud Security Solutions Winner Winner

IBM's cloud security solutions span multiple domains including risk and compliance, application and data security, physical and logical infrastructure security and identity and access management. Taking into account unique challenges of cloud computing like multitenancy, virtualization, rapid provisioning and federated identities, IBM has designed security solutions specific to the cloud (public/private/hybrid), and has adapted other offerings to meet cloud security needs, including cloud security strategy and assessment services for the development of cloud strategy based on business goals, security requirements and best practices; professional security services for the assessment and penetration testing of cloud applications and infrastructures, assessment and design of identity management controls, cloud based risk/compliance assessment, and policy management; host and network intrusion prevention solutions for the protection of networks and hosts within the cloud infrastructure from attack or misuse; and managed security services, which reduces operational costs, improves cloud security and assists with compliance through outsourcing security management to IBM experts.

IBM's history of security excellence coupled with in-depth experience in developing and delivering its own cloud solutions, such as SmartCloud Enterprise, Lotus Live, and more, are big differentiators.

Its cloud capabilities span all security domains with the ability to deliver security end-to-end – from strategy and design, to implementation and management, to assessment and continuous monitoring.

IBM is not just a provider of security solutions for the cloud, but also a provider of security solutions delivered from the cloud. These solutions leverage a shared delivery platform and private cloud architecture to offer cloud-based vulnerability assessment, email/web security and event/log management.

The company has worldwide cloud security delivery expertise spanning cloud engagements in some of the most highly regulated industries including government, health care and financial services.

It has the ability to optimize IT spending by strategically adopting cloud solutions while developing a complete understanding of risks unique to the cloud delivery model. Further, it has worked toward the development of a cloud security strategy that examines individual workloads and identifies security controls and governance requirements to properly assess their applicability for migration to a cloud environment.

IBM's has proven expertise with emerging technologies (virtualization security, federated identities, and more) to manage the complexity of the cloud security landscape, including a variety of assessment capabilities unique to cloud environments to validate the security of applications, platforms and infrastructure.

To meet compliance requirements, IBM performs an ongoing assessment of cloud solutions and providers to ensure adherence to governance requirements and avoid costly delays due to non-compliance and audit failure.

IBM helps clients across industries navigate cloud security requirements enabling organizations to realize the cost benefits associated with cloud adoption.

IBM's cloud security solutions enable organizations to benefit from cloud efficiencies (flexibility, elasticity, rapid provisioning, reduced infrastructure costs and more) while helping ensure a strong, auditable security posture across workloads.

IBM's market leadership has been well established for security solutions that IBM has adapted and developed for cloud computing.

Category description:

These technologies are deployed to protect data and/or applications deployed in a cloud environment. They may also protect the cloud computing infrastructure itself. Cloud computing security concerns are numerous for both providers and their customers, and include security and privacy worries, compliance issues and legal/contractual problems. Solutions or services in this category can provide for the protection of data or applications in the cloud, protection for traffic flowing between companies and their cloud service providers, policy management and encryption capabilities, privileged user access and controls or more.