IBM Cloud Doubles Down On Resiliency, Security And Compliance

Tech Industry

It’s not controversial to say that the Cloud space has a lot of players coming from different angles. Of course, there are the public cloud size leaders—Azure, AWS, Oracle and Google Cloud—who are primarily taking a horizontal approach. But, in typical market fashion, we’re seeing more entrants, with more specialization and differentiation, as the Cloud industry continues to mature. IBM is on a very vertical cloud track, focusing on the deep need of industries like financial services.

I’ve been following IBM’s Cloud efforts with interest since the company purchased SoftLayer, a horizontal, public cloud platform, in 2013. The following year, IBM launched its Bluemix Cloud platform, built on SoftLayer infrastructure. Finally, in 2017, IBM rebranded Bluemix to IBM Cloud. Since then, IBM Cloud has taken a predominately vertical market and partner-led approach, often pairing strategically with other public clouds to provide differentiated solutions to its customers. This approach has perhaps partially obscured IBM Cloud’s achievements, many coming from banking and other highly regulated industries. It’s not surprising to me that these are the areas IBM Cloud has invested in, given IBM’s long history of working with industries that require strict levels of compliance and security (e.g., financial services and governmental organizations).

IBM Cloud took a few hits earlier in 2021 with the surfacing of customer complaints around the platform’s resiliency. However, I believe the company did an excellent job of owning its mistakes and has come a long way toward addressing the issues raised by detractors. We recently had IBM Cloud’s GM of Delivery and Operations, Alan Peacock, stop by for a chat on the Six Five Insider podcast, which I host with my colleague Daniel Newman at Futurum Research. We seized the opportunity to talk about IBM Cloud, the growth it is experiencing and the company’s commitment to security and compliance for the high-stakes industries it serves. Peacock’s viewpoint is unique and valuable, given he spent a career in the financial services industry before landing at IBM. Today I’d like to share some insights from that conversation.

When failure is not an option

In Peacock’s words, IBM Cloud’s mission is to be “the most secure, most stable and the most resilient cloud on the planet.” Clients have chosen to run their businesses on IBM’s platform, making IBM a vital part of their business. With such an arrangement, any downtime on IBM’s part can be disastrous for its clients.

The foundation of IBM Cloud’s resiliency, as the company tells it, are its multi-zone regions (MZRs). By design, these MZRs limit the adverse effects of any failure to a single data center instead of affecting all zones and grinding operations to a halt. In this way, IBM built resiliency into the very core of its architecture.

On top of that, IBM has improved its cloud infrastructure to reduce the number of Severity 1 incidents. Additionally, the company has made enhancements to its observability stack and is improving procedures to mitigate the impact of changes. These updates include but are not limited to the implementation of an “aggressive” currency strategy across all components, the optimization of network paths and route policies, control plane configuration changes, enhanced operating procedures for auto-scaling services and continued enhancements to deployment automation capabilities. As of August 2022, these modifications reportedly achieved a 90% reduction in Severity 1 incidents and an 87% improvement in overall disruption time over the previous year. These are outstanding improvements. You can see more details here.

Now that we’ve talked about resiliency, I’d like to focus in on what I think is the most advanced vertical, partner-led Cloud IBM, its Cloud for Financial Services.

IBM Cloud for Financial Services

Advertisement

Drilling down a bit further, some of IBM Cloud’s most compelling advances revolve around its IBM Cloud for Financial Services offering. Specifically, Peacock cited IBM’s Cloud Security and Compliance Center as a significant differentiator. The Cloud Security and Compliance Center provides clients with a tool to govern their cloud resource configurations and centrally manage their compliance with organizational and regulatory guidelines. According to IBM, these capabilities allow clients in particularly stringent industries (e.g., financial, telecom, government, health) to better address the tasks typically required to ensure security and compliance, thereby accelerating their cloud migrations. Notably, the Cloud Security and Compliance Center works on all Cloud platforms, albeit with deeper capabilities on IBM Cloud.

Another big differentiator for IBM Cloud for Financial Services is the framework it provides to third-party software vendors to assess and certify their ISV products before deployment on the IBM Cloud. According to Peacock, the accountability and transparency this provides allow for much faster and safer consumption of these products on the platform.

Wrapping up

Cloud migrations can be risky and daunting for any business, let alone the highly regulated ones that IBM Cloud predominately serves. I left the conversation with a renewed appreciation for how IBM has built resiliency and redundancy into its foundation. Additionally, through solutions such as the Security and Compliance Center, IBM Cloud for Financial Services and its validation framework for 3rd and 4th party software developers, IBM has prioritized de-risking and simplifying the cloud migration process for these industries. Peacock was adamant that the work does not end here—IBM will continue to focus on design, process, tool and management improvements that will reduce incident volume, impact and response/recovery times. In time, I believe we’ll see IBM Cloud’s success resonate and expand to an even broader set of industries.

Note: Moor Insights & Strategy writers and editors may have contributed to this article.

Moor Insights & Strategy, like all research and tech industry analyst firms, provides or has provided paid services to technology companies. These services include research, analysis, advising, consulting, benchmarking, acquisition matchmaking, and speaking sponsorships. The company has had or currently has paid business relationships with 8×8, Accenture, A10 Networks, Advanced Micro Devices, Amazon, Amazon Web Services, Ambient Scientific, Anuta Networks, Applied Brain Research, Applied Micro, Apstra, Arm, Aruba Networks (now HPE), Atom Computing, AT&T, Aura, Automation Anywhere, AWS, A-10 Strategies, Bitfusion, Blaize, Box, Broadcom, C3.AI, Calix, Campfire, Cisco Systems, Clear Software, Cloudera, Clumio, Cognitive Systems, CompuCom, Cradlepoint, CyberArk, Dell, Dell EMC, Dell Technologies, Diablo Technologies, Dialogue Group, Digital Optics, Dreamium Labs, D-Wave, Echelon, Ericsson, Extreme Networks, Five9, Flex, Foundries.io, Foxconn, Frame (now VMware), Fujitsu, Gen Z Consortium, Glue Networks, GlobalFoundries, Revolve (now Google), Google Cloud, Graphcore, Groq, Hiregenics, Hotwire Global, HP Inc., Hewlett Packard Enterprise, Honeywell, Huawei Technologies, IBM, Infinidat, Infosys, Inseego, IonQ, IonVR, Inseego, Infosys, Infiot, Intel, Interdigital, Jabil Circuit, Keysight, Konica Minolta, Lattice Semiconductor, Lenovo, Linux Foundation, Lightbits Labs, LogicMonitor, Luminar, MapBox, Marvell Technology, Mavenir, Marseille Inc, Mayfair Equity, Meraki (Cisco), Merck KGaA, Mesophere, Micron Technology, Microsoft, MiTEL, Mojo Networks, MongoDB, MulteFire Alliance, National Instruments, Neat, NetApp, Nightwatch, NOKIA (Alcatel-Lucent), Nortek, Novumind, NVIDIA, Nutanix, Nuvia (now Qualcomm), onsemi, ONUG, OpenStack Foundation, Oracle, Palo Alto Networks, Panasas, Peraso, Pexip, Pixelworks, Plume Design, PlusAI, Poly (formerly Plantronics), Portworx, Pure Storage, Qualcomm, Quantinuum, Rackspace, Rambus, Rayvolt E-Bikes, Red Hat, Renesas, Residio, Samsung Electronics, Samsung Semi, SAP, SAS, Scale Computing, Schneider Electric, SiFive, Silver Peak (now Aruba-HPE), SkyWorks, SONY Optical Storage, Splunk, Springpath (now Cisco), Spirent, Splunk, Sprint (now T-Mobile), Stratus Technologies, Symantec, Synaptics, Syniverse, Synopsys, Tanium, Telesign,TE Connectivity, TensTorrent, Tobii Technology, Teradata,T-Mobile, Treasure Data, Twitter, Unity Technologies, UiPath, Verizon Communications, VAST Data, Ventana Micro Systems, Vidyo, VMware, Wave Computing, Wellsmith, Xilinx, Zayo, Zebra, Zededa, Zendesk, Zoho, Zoom, and Zscaler. Moor Insights & Strategy founder, CEO, and Chief Analyst Patrick Moorhead is an investor in dMY Technology Group Inc. VI, Dreamium Labs, Groq, Luminar Technologies, MemryX, and Movandi.

Moor Insights & Strategy founder, CEO, and Chief Analyst Patrick Moorhead is an investor in dMY Technology Group Inc. VI, Dreamium Labs, Groq, Luminar Technologies, MemryX, and Movand

Advertisement

Leave a Reply

Your email address will not be published.