IBM Acquires Assets from Cloud Security Company Spanugo

IBM Cloud

IBM has signed a definitive agreement to acquire Spanugo, a US-based provider of cloud cybersecurity posture management solutions. To further meet the security demands of its clients in highly regulated industries, IBM will integrate Spanugo software into its public cloud. Financial terms of this acquisition were not disclosed.

Late last year, IBM announced it designed the world’s first financial services public cloud to help address the requirements of financial services institutions for regulatory compliance, security and resiliency. Once available, it would provide preventative and compensatory controls for financial services regulatory workloads, multi-architecture support and proactive and automated security, leveraging “the industry’s highest levels of encryption certification.”

Howard Boville
“With the acquisition of Spanugo, we have taken another major step in advancing IBM’s differentiated capabilities in security and compliance for our enterprise clients, including those in highly regulated industries,” said Howard Boville, SVP, Cloud, IBM.

The addition of Spanugo software would help accelerate the availability of a cybersecurity control center that will enable IBM clients to define compliance profiles, manage controls and, in continuous real-time, monitor compliance across their organization.

“IBM is committed to building the industry’s most secure and open public cloud for business. With the acquisition of Spanugo, we have taken another major step in advancing IBM’s differentiated capabilities in security and compliance for our enterprise clients, including those in highly regulated industries,” said Howard Boville, SVP, Cloud, IBM. “Bringing Spanugo’s technology into our financial services public cloud will help provide our clients with evidence of their ongoing compliance, in real time.”

Cybersecurity Compliance in Real-Time

As clients move increasingly significant and sensitive workloads to the cloud, management of security and compliance would become more complex. For businesses in highly regulated industries, including financial services, healthcare, insurance, telco and more, cloud environments are most useful when they are approved for sensitive information and run workloads subject to strict regulatory and compliance guidelines.

When an organization is audited, for example, Spanugo’s technology can “efficiently and transparently” demonstrate cybersecurity compliance in real-time. Additionally, it delivers a continuous process of cloud security improvement and adaptation to reduce the likelihood of a successful attack. Spanugo software will be incorporated into a suite of capabilities within IBM public cloud services.

“Spanugo’s strong domain knowledge and experience in security posture management is a natural complement to IBM’s public cloud offerings,” said Doc Vaidhyanathan, cofounder and chief product officer, Spanugo. “By joining IBM on its mission to be the most secure public cloud for the enterprise, we’re able to deeply serve businesses across industries that require verifiable, audit-ready, real-time cybersecurity posturing.”