WHAT

Comment left in service definition indicates compliance specs may not be up-to-date

HOW

From comment "The Red Hat managed services inherit the security and compliance protocols from the OpenShift Dedicated environment. As such, ISO 27001 and PCI certifications are in process, with future work planned for FedRA"

But it seems ROHAM is already certified for ISO, PCI. What's more, it's already certified for SOC2 Type2, HIPPA according to the ps compliance source page. https://source.redhat.com/groups/public/product-security/pscr/ps_compliance"

DONE

Need to get comfirmation from BU what is correct and then update the service definition.