Understanding your responsibilities when using IBM Cloud Security and Compliance Center Workload Protection
Learn about the management responsibilities and terms and conditions that you have when you use IBM Cloud Security and Compliance Center Workload Protection. For a high-level view of the service types in IBM Cloud and the breakdown of responsibilities between the customer and IBM for each type, see Shared responsibilities for IBM Cloud offerings.
Review the following sections for the specific responsibilities for you and for IBM when you use IBM Cloud Security and Compliance Center Workload Protection. For the overall terms of use, see IBM Cloud Terms and Notices.
Incident and operations management
You and IBM share responsibilities for the set up and maintenance of your IBM Cloud Security and Compliance Center Workload Protection service instance for monitoring your application and infrastructure workloads. You are responsible for incident and operations management of your application data.
| Task | IBM Responsibilities | Your Responsibilities |
|---|---|---|
Monitor incidents |
Provide notifications for planned maintenance, security bulletins, or unplanned outages. | Set preferences to receive emails about platform notifications. Monitor the IBM Cloud status page for general announcements. |
Maintain IBM Cloud high availability SLA |
Operate the Continuous Delivery service in accordance with the IBM Cloud Public Service Level Agreements (SLAs). | |
Provide high availability capabilities |
Provide capabilities, such as IBM-owned infrastructure in multizone regions (MZR), to meet local access and low latency requirements for each supported region. | Use the list of available regions to plan for and create new instances of the service. |
Monitor agents |
Provide images and instructions for how to install agents in environments that you want to monitor, such as Kubernetes and Red Hat OpenShift. | Install and configure agents. Monitor that the agents are running in your environment. |
Change management
You and IBM share responsibilities for keeping IBM Cloud Security and Compliance Center Workload Protection service components at the latest version. You are responsible for change management of your agents, dashboards, and alert definitions.
| Task | IBM Responsibilities | Your Responsibilities |
|---|---|---|
Update the IBM Cloud Security and Compliance Center Workload Protection service |
Provide regular updates to the service with new features, fixes for defects, and security fixes. | |
Update the agent image that is hosted in IBM Cloud |
Provide regular updates to the agent image with new features, fixes to defects, and security fixes. Document changes in the Agent release notes | Update the agent to keep it up to date as new versions are made available. |
Update default rules and policies |
Update the default rules and policies as requirements change. | Update custom policies and track changes by using your own change management process. |
Update pre-defined alert definitions |
Update the default alert definitions as requirements change. | Update custom alert definitions and track changes by using your own change management process. |
Track versions of custom rules, policies, notifications, and teams |
Use your own change management process to control versions of monitoring resources such as rules, policies, teams, and notifications. |
Identity and access management
IBM is responsible for the security and compliance of IBM Cloud Security and Compliance Center Workload Protection. You are responsible for defining the IBM Cloud Identity and Access Management (IAM) policies to control which users within your account have access to the monitoring data.
| Task | IBM Responsibilities | Your Responsibilities |
|---|---|---|
Manage platform permissions |
Allow administrators to control access to manage resources in the IBM Cloud. | Grant, revoke, and manage access to service instances by using IAM. |
Manage service permissions |
Allow administrators to control access to work with the IBM Cloud Security and Compliance Center Workload Protection. | Grant, revoke, and manage access to monitoring features by using IAM. |
Control data access |
Allow administrators to control access to data and metadata through Workload Protection teams. | Grant, revoke, and manage access to data by using IAM and team definitions. |
Learn more about controlling access through IAM. Learn more about controlling access using Workload Protection teams.
Security and regulation compliance
IBM is responsible for the security and compliance of IBM Cloud Security and Compliance Center Workload Protection. You are responsible for ensuring that regulated data is not provided to the IBM Cloud Security and Compliance Center Workload Protection service.
| Task | IBM Responsibilities | Your Responsibilities |
|---|---|---|
Meet security and compliance objectives |
Maintain controls that are commensurate to supported industry compliance standards, such as SOC. | Ensure that regulated data is not provided to the IBM Cloud Security and Compliance Center Workload Protection service. |
Disaster recovery
IBM is responsible for the recovery of IBM Cloud Security and Compliance Center Workload Protection components in case of disaster.
| Task | IBM Responsibilities | Your Responsibilities |
|---|---|---|
Service |
Automatically recover and restart service components after any disaster event. | |
Data |
Extract and save data and alert definitions if you cannot afford for it to be lost in the event of an un-recoverable event. | |
Agent |
Recovery of the agents running in your environment should they be impacted by a disaster. |