Audit Phase: V-DIG
Target Entity: International Business Machines Corporation (IBM)
Audit Date: 2026-05-01
IBM’s security and consulting stack incorporates multiple products from Israeli-origin or Israeli co-founded companies, several embedded at the infrastructure level of IBM’s commercial service delivery.
Trusteer (Acquired 2013 — fully integrated IBM product)
IBM acquired Trusteer, an Israeli cybersecurity firm founded in Tel Aviv in 2006, for approximately $1 billion in 2013 2. Trusteer specialised in endpoint security and financial fraud prevention, offering the Rapport browser-based banking protection product and the Pinpoint Assure account fraud detection platform. Post-acquisition, the company was absorbed into IBM Security as “IBM Trusteer” and continues as an active, commercially marketed IBM product line deployed at financial institutions globally 1112. Trusteer’s product development operations remain centred in Tel Aviv within IBM’s Israeli footprint 11. This is not a vendor partnership but a direct Israeli-origin technology ownership: Trusteer is IBM intellectual property.
CyberArk (Israeli-founded; R&D centred in Israel)
IBM Security maintains a documented technology integration between CyberArk’s Privileged Access Management (PAM) platform and IBM QRadar SIEM, enabling joint threat detection workflows across identity governance and security operations 3. A formal partnership expansion between the two companies was announced in 2021 4. CyberArk is listed as an IBM Security ecosystem partner, and QRadar documentation maintained integration references through 2023. While CyberArk has relocated its corporate headquarters to Newton, Massachusetts, the majority of its R&D workforce and engineering operations remain in Israel.
Check Point Software Technologies (Israeli-founded and headquartered)
Check Point and IBM have maintained a multi-year security alliance. Check Point’s threat intelligence feeds and Next-Generation Firewall products integrate with IBM QRadar SIEM and IBM X-Force Threat Intelligence. The alliance was publicly extended in 2018 5, with active integration documentation maintained through 2022 6. This integration is embedded in IBM’s core SIEM operations infrastructure.
SentinelOne (Israeli co-founded; HQ US)
IBM and SentinelOne announced a formal technology partnership in 2023, integrating SentinelOne’s Singularity XDR platform with IBM Security QRadar SIEM for joint managed detection and response (MDR) services 27. IBM documentation listed SentinelOne as a QRadar-integrated endpoint detection vendor 27. This positions SentinelOne within IBM’s actively marketed MDR delivery stack as of 2023–2024. The SentinelOne–IBM partnership has not been publicly terminated or modified as of sources reviewed through April 2026 27.
Wiz (Israeli co-founded; HQ US)
IBM Security Blog documented a cloud security integration between Wiz’s cloud security posture management (CSPM) platform and IBM Security services in 2023, enabling joint cloud vulnerability assessment workflows 25. Google completed its acquisition of Wiz in 2025 42, at which point Wiz became part of Google Cloud. The continued availability and IBM-partnership status of Wiz’s CSPM products within the IBM Security ecosystem post-acquisition is not confirmed in publicly available sources reviewed. Status: unconfirmed post-Google acquisition.
Claroty (Israeli co-founded)
Claroty’s OT/ICS security platform has a documented integration with IBM QRadar for operational technology threat monitoring 26. This extends Israeli-origin technology into IBM’s industrial security offerings as of 2022.
Palo Alto Networks (Israeli co-founded by Nir Zuk; HQ US) — Structural Dependency
In May 2024, IBM sold its QRadar SaaS security product line to Palo Alto Networks and simultaneously announced a broad security partnership under which IBM’s managed security services will be delivered on Palo Alto Networks’ Cortex platform 2324. This is the most structurally significant Israeli-origin technology relationship in IBM’s current stack: IBM’s entire managed security services delivery infrastructure is being migrated onto a platform co-founded by an Israeli technologist, with the commercial arrangement formalised at the level of a product-line divestiture and services delivery restructuring. The ongoing delivery of managed security services on the Cortex platform continues post-July 2024 and post-November 2024 2324.
NICE Systems (Israeli-headquartered) and Verint Systems (Israeli co-founded)
IBM Global Business Services maintained documented partnerships with NICE for contact centre workforce optimisation and analytics [pre-2020] and with Verint for workforce optimisation and customer analytics tools [pre-2020]. No specific post-2020 IBM–NICE formal partnership announcement or updated integration documentation has been identified in publicly available sources reviewed 38. No post-2020 IBM–Verint formal partnership documentation has been identified in public sources reviewed 39. Verint completed a strategic split in 2021, separating its customer engagement business from its cyber intelligence division, which became Cognyte Software (separately listed). The pre-2020 IBM partnership related to workforce optimisation, consistent with the customer engagement side of Verint’s business. No IBM–Cognyte relationship has been identified. Status for both NICE and Verint: pre-2020 documentation only; current status unconfirmed.
The CyberArk, Check Point, and SentinelOne integrations are embedded in IBM’s QRadar SIEM and MDR platform — core security operations infrastructure, not peripheral tooling 345627. The Palo Alto Networks deal represents a qualitative escalation: IBM’s managed security services delivery stack dependency on an Israeli co-founded company’s product is now contractually locked at the corporate divestiture level 2324. IBM Trusteer remains a directly owned Israeli-origin commercial product deployed globally 1112.
Arvind Krishna — IBM CEO and Chair (since 2020)
Arvind Krishna serves as IBM Chairman and CEO. His disclosed compensation and equity holdings are documented in IBM proxy filings 30. Based on publicly available proxy statement disclosures and SEC filings through 2024, no personal investments by Arvind Krishna in Israeli surveillance, cyber, or SIGINT firms — including NSO Group, Cellebrite, CyberArk, Wiz, SentinelOne, Carbyne, AnyVision/Oosto, Check Point, Verint, or Unit 8200/Talpiot alumni firms — have been identified in the public record 3031.
IBM Board of Directors (2024–2025)
IBM’s board composition as of the 2024–2025 proxy includes directors drawn from finance, technology, and regulated industries. No IBM board member has been publicly identified as holding a board seat, founding role, or disclosed personal investment in Israeli surveillance, cyber, or military-technology firms in proxy disclosures reviewed 3033. No IBM board member has been publicly identified as a Talpiot or Unit 8200 alumnus in publicly available sources.
Evidence gap: Proxy disclosures do not capture personal investments below SEC-reportable thresholds. Private investments in Israeli early-stage cyber or AI ventures by board members or executives are not verifiable from public filings alone.
Vanguard Group and BlackRock (≥5% institutional shareholders)
Vanguard Group and BlackRock are IBM’s largest institutional shareholders (each typically holding 5–8% of IBM common stock based on 13-F filings). Both are index fund managers rather than strategic investors. Neither has been publicly identified as exercising directional control over IBM’s technology partnership choices, and their holdings in Israeli technology firms are diversified index-driven positions not specific to IBM’s supply chain decisions.
No public evidence identified of third-party systems integrators mandating or deploying Israeli-origin technology specifically within IBM’s own enterprise IT stack through specific procurement records. IBM’s internal IT vendor relationships are not publicly disclosed at the individual product level in corporate filings 1920.
IBM operated a facial recognition research and commercial programme under “IBM Watson Visual Recognition.” In June 2020, IBM CEO Arvind Krishna announced in a letter to the US Congress that IBM was exiting the general-purpose facial recognition market, citing concerns about mass surveillance, racial bias, and civil rights. This withdrawal affected IBM’s global commercial facial recognition software offerings. No active IBM facial recognition product line has been identified in public sources post-2020.
Who Profits Research Center documented (circa 2012–2016) that IBM Israel provided technology services related to the Israeli Population and Immigration Authority’s biometric population registry system, which administers identification for Israeli citizens and — in a separate administrative function — for Palestinian population records in the occupied West Bank [pre-2020] 282940. This historical record is substantiated in Who Profits documentation 2840 and in activist reporting 29. Whether this contractual relationship continued, was renewed, or was terminated post-2020 is not confirmed in publicly available sources reviewed through April 2026. This evidence gap is material and requires fresh primary source verification.
IBM’s managed security services and consulting arm (IBM Consulting / IBM Security) resell and integrate products from Check Point, CyberArk, SentinelOne, and Palo Alto Networks as part of client-facing managed services offerings 3456232427. Israeli-origin and Israeli co-founded technologies therefore reach IBM’s downstream clients through IBM’s services delivery, in addition to any direct client procurement. This constitutes an indirect propagation pathway for these technologies.
No verified use by IBM of AnyVision/Oosto, Trigo, BriefCam, or Trax products identified. No public evidence identified of IBM procurement, integration, or partnership with these Israeli-origin biometrics or retail analytics vendors.
No verified use of Israeli-origin predictive policing, social media monitoring, or workforce surveillance tools by IBM (as an enterprise customer rather than reseller or integrator) identified in public sources.
The American Friends Service Committee’s Investigate platform 48 documents IBM Israel’s historical population registry and biometric ID work [pre-2020], IBM’s security product partnerships with Israeli-origin firms (CyberArk, Check Point, SentinelOne) as part of IBM’s technology ecosystem, and IBM Research Haifa as an active Israeli R&D presence. AFSC Investigate does not, on available evidence, document confirmed IBM contracts with the IDF or Israeli intelligence agencies. Its IBM findings are consistent with the Who Profits record — primarily centred on historical administrative systems work and current ecosystem partnerships rather than confirmed defence/intelligence contracting 48.
IBM Cloud’s global data centre documentation does not include a data centre location within Israel as of the most recent publicly available IBM Cloud regional listings 18. IBM maintains office and R&D infrastructure in Israel (see Technology Ecosystem & R&D Footprint) but no IBM-operated cloud data centre within Israel has been confirmed in public IBM Cloud documentation reviewed. IBM’s regional Middle East cloud infrastructure has been anchored in UAE and Saudi Arabia zones, not Israel, per IBM Cloud announcements through 2024. No public evidence identified of IBM leasing or co-locating cloud infrastructure within Israel. This limits but does not eliminate data-exposure risk, as IBM Trusteer and IBM Research Haifa process data in Israel outside the IBM Cloud regional data centre framework.
Project Nimbus is the Israeli government’s $1.2 billion cloud infrastructure tender awarded in 2021 to Google Cloud and Amazon Web Services 9. IBM was not identified as a primary contractor or sub-contractor in publicly available Project Nimbus contract disclosures or press coverage 910. No public evidence identified of IBM participation in Project Nimbus. IBM’s non-participation in Project Nimbus distinguishes it from the primary cloud infrastructure vendors subject to the No Tech For Apartheid campaign.
IBM Israel has been documented in Israeli business press as engaged in digital transformation and IT modernisation projects for Israeli government ministries 16. The specific agencies, contract values, scope, and whether these engagements encompass data sovereignty, classified data hosting, or resilience services for security-adjacent bodies are not detailed in publicly available sources reviewed 1646. Israeli government procurement records are not comprehensively accessible in English-language public sources. IBM Israel’s consulting and sales operations market watsonx and AI transformation services to Israeli government ministries as part of IBM’s broader enterprise offering 4146; no specific contract awards with named Israeli government agencies have been confirmed in public sources through April 2026.
No public evidence identified of IBM providing services explicitly contracted for digital sovereignty or infrastructure resilience for Israeli military bodies.
IBM Research Haifa — Israeli Jurisdiction Data Exposure
IBM Research Haifa operates within Israeli legal jurisdiction. Research activities at the lab involving data processing, algorithmic development, or AI model training are subject to Israeli law, including the Israeli Privacy Protection Law and the Israeli Defence Export Control Law, which can require Israeli entities to cooperate with state intelligence and security requirements 43. IBM Research Haifa’s focus areas — cybersecurity (Trusteer lineage), NLP/AI, and optimisation — are domains where data processed or models developed in Israel are potentially accessible to Israeli state actors under applicable Israeli law.
IBM Trusteer — Israeli-Jurisdiction R&D and Data Processing
IBM Trusteer’s product development operations are centred in Tel Aviv 1112. Trusteer’s products are deployed at global financial institutions and process behavioural, device-fingerprint, and transaction data for fraud detection purposes. The R&D pipeline for Trusteer — including model training, threat intelligence aggregation, and product engineering — is conducted under Israeli legal jurisdiction. Under the Israeli Defence Export Control Law and relevant intelligence cooperation statutes, data processed or accessible within Israeli-territory IBM operations is subject to potential Israeli state access. This constitutes a data-exposure pathway for Trusteer’s global financial institution customer data through IBM’s Israeli R&D operations. No public evidence of actual Israeli state access to Trusteer data has been identified. The exposure characterisation is structural-legal, derived from jurisdiction of operation, not from confirmed state-access incidents.
The UN OHCHR database of business enterprises involved in settlement activity (established pursuant to HRC Resolution 31/36, updated under HRC Resolution 53/25) 36 lists companies with operations or business relationships in Israeli settlements in the Occupied West Bank. Based on sources reviewed through April 2026, IBM is not listed in the OHCHR settlement business database as currently published. The database has primarily captured companies in sectors including real estate, construction, finance, tourism, and retail directly operating within settlement boundaries.
Note: The OHCHR database is acknowledged to be non-exhaustive and its methodology focuses on companies with direct settlement-area commercial operations. Technology services and software licensing relationships are structurally less likely to generate an OHCHR listing than physical settlement infrastructure. Absence from the database is not a finding of non-involvement; it reflects the database’s scope and coverage methodology.
The Don’t Buy Into Occupation (DBIO) coalition’s 2024 and 2025 editions 3435 focus primarily on companies providing physical, financial, and digital infrastructure directly to settlement municipalities, housing developers, and settlement-linked businesses. Based on sources reviewed through April 2026, IBM is not prominently featured in DBIO 2024 or 2025 company lists as a primary-named target. The DBIO lists in these editions have centred on companies including telecommunications operators, construction firms, financial institutions, and logistics companies operating within settlement boundaries.
Note: DBIO methodology focuses on companies with documented commercial relationships specifically serving settlement infrastructure. IBM’s absence from the named list does not exclude the possibility of IBM technology reaching settlement-based entities through Israeli government deployments or commercial channels.
No direct public evidence has been identified of IBM contracting specifically with settlement municipalities, settlement developers, or settlement-based enterprises to provide digital products, services, or platforms 49. IBM Israel’s commercial operations provide IT services, cloud consulting, and enterprise software to Israeli government ministries and private sector clients 163146. Israeli government ministries — including those responsible for civil administration — administer functions extending into the occupied West Bank. Whether IBM Israel’s enterprise IT provision to Israeli civil administration bodies encompasses systems operationally deployed in or for settlement-area administration cannot be confirmed or excluded from publicly available sources reviewed. The historical Who Profits documentation of IBM Israel’s population registry work [pre-2020] 2829 is the closest documented evidence of IBM technology having administrative application to occupied territory populations, but this evidence predates 2020 and its current status is not confirmed.
Red Hat Israel (IBM subsidiary) Settlement Nexus: No public evidence identified of Red Hat Israel providing specific services to settlement municipalities or settlement-linked entities.
Red Hat (IBM subsidiary, acquired 2019 52)
Red Hat is IBM’s open-source software subsidiary, acquired for approximately $34 billion in 2019. Red Hat maintains an Israeli office and operations, primarily focused on OpenShift (Kubernetes platform), Ansible automation, and enterprise Linux 45. Red Hat Israel employs engineers and sales staff and is part of IBM’s hybrid cloud delivery capability in the Israeli market. Red Hat’s products — OpenShift, RHEL, Ansible — are general-purpose infrastructure software. No verified contracts between Red Hat Israel and Israeli military or security bodies have been identified in publicly available sources; however, Red Hat’s commercial products are widely deployed in enterprise and government environments globally, and Israeli government use of Red Hat products through IBM Israel’s commercial channels cannot be excluded on available public evidence.
Kyndryl (spun off from IBM November 2021 53)
Kyndryl, the infrastructure managed services business spun off from IBM in November 2021, is an independent publicly traded entity and no longer an IBM subsidiary. Kyndryl Israel operates as a separate entity 54. Kyndryl inherited IBM’s legacy managed infrastructure services contracts, including any that may have existed with Israeli government clients at the time of the spin-off. IBM is not responsible for Kyndryl’s post-spin-off activities; however, pre-spin-off IBM infrastructure services contracts that transferred to Kyndryl represent a lineage relationship. No specific Israeli government or military contracts transferred to Kyndryl have been confirmed in publicly available sources.
HashiCorp (IBM acquisition, completed 2024 55)
IBM completed the acquisition of HashiCorp — a US-based infrastructure automation software company (Terraform, Vault) — in 2024 for approximately $6.4 billion 55. HashiCorp is US-origin. No Israeli-origin technology components or Israeli government-specific contracts have been identified in HashiCorp’s disclosed operations relevant to this audit.
No verified contracts between IBM and the Israeli Ministry of Defence (MoD), Israel Defence Forces (IDF), or Israeli intelligence agencies (Mossad, Shin Bet, or Unit 8200) have been identified in public procurement records, corporate disclosures, or credible news reporting reviewed for this audit.
Who Profits’ IBM profile 141540 references IBM Israel’s historical involvement with Israeli state administrative systems but does not document confirmed current contracts with the IDF or MoD specifically. IBM’s 10-K filings and Annual Reports 192031 do not separately disclose Israeli government or military contracts; such contracts, if any, would be aggregated into regional revenue figures and not individually disclosed below material threshold levels.
Israeli MoD procurement records are classified or not publicly accessible in searchable form — this constitutes a structural evidence gap that cannot be resolved through open-source review alone.
IBM Trusteer’s fraud detection and endpoint security tools are general-purpose commercial products deployed at financial institutions globally 1112. No public reporting has confirmed their specific deployment by Israeli military or intelligence agencies. IBM QRadar SIEM is a widely deployed commercial security operations platform; No public evidence identified of its specific deployment by the IDF or Israeli intelligence in sources reviewed. Who Profits (2021) 15 references IBM Israel’s work with Israeli government agencies in an IT services context but does not present confirmed evidence of specific dual-use deployment by Israeli security forces.
ICJ Advisory Opinion — 19 July 2024 50
The ICJ delivered its Advisory Opinion on the Legal Consequences Arising from the Policies and Practices of Israel in the Occupied Palestinian Territory on 19 July 2024, concluding that Israel’s continued presence in the Occupied Palestinian Territory is unlawful and that third states and international organisations have obligations not to render aid or assistance. This AO constitutes formal constructive notice to corporate actors of the legal context of their operations.
ICC Arrest Warrants — November 2024 51
The ICC Pre-Trial Chamber issued arrest warrants for Israeli Prime Minister Benjamin Netanyahu and former Defence Minister Yoav Gallant in November 2024 in relation to the situation in the State of Palestine.
IBM activities confirmed as ongoing post-19 July 2024:
– The IBM–Palo Alto Networks QRadar SaaS sale and managed security services partnership was formalised in May 2024, predating the ICJ AO, but the ongoing delivery of managed security services on Palo Alto Networks’ Cortex platform continues post-July 2024 and post-November 2024 2324.
– IBM Research Haifa continues operations. No public announcement of suspension, reduction, or review of IBM Research Haifa activities has been identified in sources reviewed through April 2026 43.
– IBM Trusteer continues as an active commercial product line with no product withdrawal or operational change announced 11.
– IBM Israel’s commercial IT and consulting operations continue with no public IBM announcement of contract suspension or market exit from Israel 146.
– The SentinelOne–IBM partnership, formalised in 2023, has not been publicly terminated or modified as of sources reviewed through April 2026 27.
No public evidence identified of IBM developing, selling, licensing, or maintaining offensive cyber capabilities, zero-day exploit tools, or digital weapons systems, nor of any such tools being deployed by Israeli state actors attributable to IBM.
IBM’s watsonx AI platform was launched in May 2023 as a commercial enterprise AI and data platform 17. IBM Israel’s consulting and sales operations market watsonx to Israeli government ministries as part of IBM’s broader AI transformation offering 4146. No specific watsonx contract announcements with named Israeli government agencies have been identified in IBM’s public newsroom, Israeli business press (Globes, Calcalist), or government procurement announcements reviewed through April 2026. Israeli government AI procurement is not comprehensively publicly disclosed.
No public evidence identified of IBM providing AI systems to the IDF or Israeli intelligence for operational or security applications.
UN Special Rapporteur Francesca Albanese’s report A/HRC/59/23 (2 July 2025) 37 — titled “From Economy of Occupation to Economy of Genocide” — addresses the role of the private sector, particularly technology companies, in sustaining what the report characterises as the economy of occupation and genocide. The report names Google and Amazon as Project Nimbus contractors and subjects them to the most detailed scrutiny in the cloud/AI section; it also specifically addresses Palantir. IBM is not specifically named as a primary subject in A/HRC/59/23 in the manner that Google, Amazon, and Palantir are named, based on available knowledge of the report’s contents. However, the report’s framing of AI platform and enterprise IT provision to Israeli government ministries as a category of concern is potentially applicable to IBM Israel’s documented government IT engagements 1646. The report also discusses Israeli “data sovereignty” requirements and the Defence Export Control Law as mechanisms by which technology provided to Israeli entities becomes accessible to the Israeli security apparatus — a framing directly relevant to IBM Research Haifa’s data handling and IBM Trusteer’s Israeli-jurisdiction R&D operations.
Evidence gap: Full text of A/HRC/59/23 was not accessible via live web tool at the time of the expansion research run. IBM’s specific appearance or non-appearance in the full document has not been verified at paragraph level. Users should verify against the primary OHCHR document 37.
No public evidence identified of IBM AI models being trained on civilian population data, intercepted communications, or surveillance-derived datasets originating from Israel or the occupied territories.
No public evidence identified of IBM providing autonomous target generation, automated threat identification for kinetic purposes, or autonomous tracking systems to Israeli military or security forces.
IBM’s 2020 exit from the facial recognition market followed documented internal and external research on racial bias in facial recognition systems, including IBM’s own publications on differential accuracy across demographic groups. This represents a prior corporate acknowledgement of discriminatory algorithmic risk in IBM’s own AI product line, relevant context for assessing AI governance posture.
IBM has operated a research laboratory in Haifa, Israel since 1972, making it one of IBM’s oldest non-US research facilities 7. The lab celebrated its 50th anniversary in 2022 8. IBM Research Haifa is one of IBM’s approximately twelve global research laboratories. The lab employs several hundred researchers and engineers; IBM does not publicly disclose precise per-lab headcount 78. No public announcement of suspension, reduction, or closure of IBM Research Haifa has been identified in sources reviewed through April 2026 43.
IBM Research Haifa’s publicly documented current focus areas (2023–2025) include 43:
– AI and foundation models: Contributing to IBM’s broader watsonx and foundation model research programme, including work on efficient inference, model compression, and enterprise AI alignment.
– Cybersecurity: Continued work in threat intelligence and fraud detection — the lineage of the Trusteer product development.
– Quantum computing: IBM Research Haifa has been listed as a participating lab in IBM’s quantum computing research network.
– Hybrid cloud optimisation: Research supporting Red Hat OpenShift and IBM Cloud Pak deployments.
– Healthcare AI: Medical imaging analysis and clinical NLP research.
IBM Research Haifa researchers publish in major AI, security, and systems conferences (NeurIPS, IEEE S&P, USENIX). The lab remains one of IBM’s active global research facilities as of April 2026.
IBM maintains additional offices in Tel Aviv and other Israeli cities for sales, consulting (IBM Consulting Israel), and technology services operations 1. IBM Trusteer’s product development team is headquartered in Tel Aviv and operates within IBM Security post-acquisition 1112.
Trusteer (2013): IBM acquired Trusteer, founded in Tel Aviv in 2006, for approximately $1 billion 212. Products include Rapport (browser-based fraud protection deployed at banking institutions globally) and Pinpoint Assure (account fraud detection). Post-acquisition operations continue as IBM Trusteer within IBM Security, with R&D centred in Israel 11. This is IBM’s only confirmed Israeli-origin acquisition identified in the public record through 2024. No additional verified IBM acquisitions of Israeli-origin companies were identified.
HashiCorp (2024): IBM acquired HashiCorp, a US-based infrastructure automation software company (Terraform, Vault), for approximately $6.4 billion 55. HashiCorp is US-origin with no Israeli-origin technology components identified in its disclosed operations relevant to this audit.
IBM Research Haifa has maintained research collaboration relationships with the Technion–Israel Institute of Technology 21 and Hebrew University of Jerusalem 21. These relationships are referenced in institutional materials but the specific terms — including IP co-ownership, licensing structures, or co-development agreements — are not publicly documented in sources reviewed. IBM Research Haifa researchers have been named on IBM patent filings across decades of operation covering combinatorial optimisation, storage systems, NLP, and cryptography, though specific co-development patent agreements with Israeli academic institutions have not been confirmed in detailed public patent records reviewed.
IBM’s 10-K filing for fiscal year 2024 (filed February 2025) 31 continues the established disclosure pattern. IBM reports revenue in geographic segments (Americas, Europe/Middle East/Africa, Asia Pacific) without country-level disaggregation below material disclosure thresholds. Israeli operations — including IBM Israel’s commercial revenues, IBM Research Haifa costs, and IBM Trusteer product revenues — are not separately identified in the 10-K. The IBM–Palo Alto Networks partnership and QRadar SaaS divestiture are referenced in the context of IBM’s Security segment restructuring. No new Israeli government contract disclosures, no new acquisitions of Israeli-origin firms, and no Israeli-specific risk factors appear in the 10-K 2024 beyond the general “geopolitical risk” disclosures applicable across IBM’s global operations 31.
Who Profits, an Israeli NGO tracking corporate involvement in the occupation, maintains an IBM company profile 1440 documenting IBM Israel’s historical provision of technology to Israeli state administrative systems. The most substantively evidenced period covers 2012–2016 [pre-2020] 28, centred on IBM Israel’s role in the Population and Immigration Authority’s biometric population registry. Who Profits’ 2021 update 15 references continued IBM Israel government engagements but does not present newly evidenced military or occupation-specific contracts beyond the historical administrative systems record. IBM Israel’s biometric ID involvement is also documented in 972 Magazine 29 [pre-2020].
The American Friends Service Committee’s Investigate platform 48 tracks corporate involvement in Israeli military operations. AFSC Investigate’s IBM profile documents: IBM Israel’s historical population registry and biometric ID work [pre-2020]; IBM’s security product partnerships with Israeli-origin firms (CyberArk, Check Point, SentinelOne); and IBM Research Haifa as an active Israeli R&D presence. AFSC Investigate does not document confirmed IBM contracts with the IDF or Israeli intelligence agencies; its IBM findings are consistent with the Who Profits record.
The BDS National Committee lists IBM as a target of BDS-adjacent campaign activity 13, citing IBM Israel’s historical role in supplying technology to Israeli administrative and population control systems — specifically the biometric ID infrastructure and population registry technology used to administer the Palestinian population in occupied territories [pre-2020]. IBM has not issued a public statement specifically responding to BDS campaign demands regarding its Israeli operations based on publicly available sources reviewed; IBM’s general corporate responsibility communications do not address this campaign specifically.
Amnesty Tech’s 2022 reporting on technology companies and Israeli surveillance 22 did not specifically name IBM as a primary subject of investigation. Amnesty’s focus in the Israeli surveillance context centred on NSO Group / Pegasus spyware and government-mandated surveillance infrastructure, not IBM products.
The No Tech For Apartheid campaign 10 focuses specifically on Google and Amazon as Project Nimbus contractors. IBM is not featured as a primary campaign target in No Tech For Apartheid materials reviewed, consistent with IBM’s non-participation in Project Nimbus.
As noted under AI, Algorithmic & Autonomous Systems above, IBM is not specifically named as a primary subject in A/HRC/59/23 37 in the manner that Google, Amazon, and Palantir are named. The report’s broader framing of enterprise IT, cloud, and AI platform provision to Israeli government bodies as a category of concern, and its analysis of the Israeli Defence Export Control Law as a mechanism for state access to privately processed data, is relevant contextual framing for IBM’s documented Israeli operations.
Edwin Black’s 2001 publication IBM and the Holocaust documented IBM’s Dehomag subsidiary’s role in census and identification systems under the Nazi regime [pre-2020]. This historical documentation is not within the operational scope of this audit but forms part of the civil society record contextualising IBM’s relationship with state identification and population management technologies across multiple eras.
No regulatory inquiries, export control actions, or sanctions-related investigations involving IBM’s technology sales or services to Israeli state entities have been identified in publicly available regulatory records, SEC filings, or news sources reviewed 192031.
https://securityintelligence.com/articles/cyberark-ibm-qradar-integration/ ↩↩↩
https://www.cyberark.com/press/cyberark-ibm-expand-partnership/ ↩↩↩
https://newsroom.ibm.com/2018-02-check-point-ibm-security ↩↩↩
https://research.ibm.com/blog/ibm-research-haifa-50-years ↩↩
https://www.haaretz.com/israel-news/tech-news/2021-04-21/ty-article/google-amazon-win-1-2b-israeli-government-cloud-contract/0000017f-e4b7-d804-ad7f-ecff16c20000 ↩↩
https://www.securityweek.com/ibm-acquires-trusteer-fraud-protection ↩↩↩↩↩↩
https://bdsmovement.net/companies/ibm ↩
https://en.globes.co.il/en/article-ibm-israel-government-digital-transformation-2022 ↩↩↩↩
https://newsroom.ibm.com/2023-05-09-IBM-Unveils-the-watsonx-AI-and-Data-Platform ↩
https://www.ibm.com/cloud/data-centers ↩
https://www.ibm.com/investor/att/pdf/IBM_Annual_Report_2023.pdf ↩↩↩
https://www.sec.gov/cgi-bin/browse-edgar?action=getcompany&CIK=0000051143&type=10-K ↩↩↩
https://www.technion.ac.il/en/ibm-research-collaboration/ ↩↩
https://www.amnesty.org/en/latest/news/2022/tech-companies-israeli-surveillance/ ↩
https://www.reuters.com/technology/ibm-palo-alto-networks-qradar-2024-05-16/ ↩↩↩↩↩
https://newsroom.ibm.com/2024-05-ibm-palo-alto-networks-security ↩↩↩↩↩
https://securityintelligence.com/posts/ibm-wiz-cloud-security-integration/ ↩
https://claroty.com/partners/ibm-qradar ↩
https://www.sentinelone.com/press/sentinelone-ibm-partnership-2023/ ↩↩↩↩↩↩
https://www.sec.gov/cgi-bin/browse-edgar?action=getcompany&CIK=0000051143&type=DEF+14A ↩↩↩
https://www.sec.gov/cgi-bin/browse-edgar?action=getcompany&CIK=0000051143&type=10-K ↩↩↩↩↩↩
https://www.ibm.com/investor/governance/board-of-directors ↩
https://www.ibm.com/investor/governance/board-of-directors ↩
https://dontbuyintooccupation.org/ ↩
https://dontbuyintooccupation.org/ ↩
https://www.ohchr.org/en/hr-bodies/hrc/regular-sessions/session31/res-31-36 ↩
https://www.ohchr.org/en/documents/thematic-reports/ahrc5923-economy-occupation-economy-genocide ↩↩↩
https://www.nice.com/partners/ibm ↩
https://www.verint.com/partners/ ↩
https://cloud.google.com/blog/topics/inside-google-cloud/welcoming-wiz-to-google-cloud ↩
https://newsroom.ibm.com ↩
https://www.redhat.com/en/global/israel ↩
https://investors.cellebrite.com/sec-filings ↩
https://dontbuyintooccupation.org/ ↩
https://www.icj-cij.org/case/186 ↩
https://www.icc-cpi.int/news/situation-state-palestine-icc-pre-trial-chamber-i-rejects-state-israels-challenges ↩
https://newsroom.ibm.com/2019-07-09-IBM-Closes-Landmark-Acquisition-of-Red-Hat ↩
https://newsroom.ibm.com/2021-11-04-Kyndryl-Completes-Separation-from-IBM ↩
https://www.kyndryl.com/il/en ↩
https://newsroom.ibm.com/2024-04-24-IBM-to-Acquire-HashiCorp ↩↩↩
