About cookies on this site Our websites require some cookies to function properly (required). In addition, other cookies may be used with your consent to analyze site usage, improve the user experience and for advertising. For more information, please review your options. By visiting our website, you agree to our processing of information as described in IBM’sprivacy statement. To provide a smooth navigation, your cookie preferences will be shared across the IBM web domains listed here.
Understanding your responsibilities when you use Power Virtual Server with VPC landing zone deployable architecture
Learn about the management responsibilities and terms and conditions that you have when you use one of the Power Virtual Server with VPC landing zone deployable architecture.
- For more information about the responsibilities for you and for IBM® when you use a deployable architecture, see Understanding your responsibilities when you use deployable architectures.
- For a high-level view of the service types in IBM Cloud® and the breakdown of responsibilities between the customer and IBM for each type, see Shared responsibilities for using IBM Cloud® products.
- For the overall terms of use, see IBM Cloud Terms and Notices.
- For more information about the shared responsibilities for each Financial Services Validated service, see Responsibilities for operating services in your deployment in IBM Cloud Framework for Financial Services.
Review the following section for the specific responsibilities for you and for IBM when you use the Power Virtual Server with VPC landing zone deployable architecture.
Incident and operations management
Incident and operations management includes tasks such as monitoring, event management, high availability, problem determination, recovery, and full state backup and recovery.
The landing zone deployable architectures do not identify specific responsibilities in this area.
Identity and access management
Identity and access management includes tasks such as authentication, authorization, access control policies, and approving, granting, and revoking access.
| Task | IBM responsibilities | Your responsibilities |
|---|---|---|
| Secure with least privilege | Document the minimal IAM access requirements to run the deployable architecture. | |
| Manage secrets |
|
Security and regulation compliance
Security and regulation compliance includes tasks such as security controls implementation and compliance certification.
| Task | IBM responsibilities | Your responsibilities |
|---|---|---|
| Meet security and compliance objectives | Provide a deployable architecture that complies with the set of controls that are defined with the release of the deployable architecture. The controls in the deployable architecture do not necessarily cover the complete profile for the IBM Cloud Framework for Financial Services, as shown in the Available predefined profiles. | |
| Verify configuration changes | Understand the effects on the security and compliance posture of any user-initiated changes to the default configuration. Run IBM Cloud Security and Compliance Center checks if needed to ensure that the deployable architecture remains in compliance. | |
| Ensure that the operating system image does not contain any vulnerabilities. | IBM Cloud provided and verified operating system images are used. After deployment, operating system images are updated to the newest state in the defined minor release. Official RHEL software repositories are used for installation of additional software components (like SQUID proxy). | Customer is responsible to keep the operating system secure and compliant after deployment. |
Disaster recovery
Disaster recovery includes tasks such as providing dependencies on disaster recovery sites, provision disaster recovery environments, data and configuration backup, replicating data and configuration to the disaster recovery environment, and failover on disaster events.
The Power Virtual Server with VPC landing zone deployable architectures do not identify specific responsibilities in this area.