Sisense Cloud Security Controls

Sisense Cloud is hosted on Amazon Web Services (AWS). This enables Sisense's software to take advantage of the robust security and compliance certifications available on AWS. For more information about AWS Security, see AWS Cloud Security. For a list of certifications and assurance programs, see AWS Compliance.

If you are new to Sisense, you can learn more about Sisense security here.


Sisense's System Environment Secure Deployment

AWS Account Access Restriction

Access to Sisense Cloud environments is securely managed and restricted to authorized Sisense personnel with a demonstrated business need to maintain, troubleshoot, or support the platform. Access to the Sisense server may be required by IT, Sisense Cloud Service, or Sisense Support.

Support teams utilize a secure support tunnel, initiated only upon customer approval, to access customer environments. See Cloud Support Access for more information about support access.

Sisense Server

Sisense deploys a dedicated and isolated virtual server in the AWS for each Licensee. Each Licensee's deployment is completely independent of, and does not have access to, any other Sisense Licensee's deployment.

Control Open Ports

All incoming and outgoing ports are blocked by default. There is a predefined list of ports that are open for the Sisense application, as follows:

  • Incoming port for Sisense UI (HTTPS)
  • Incoming port for access to Sisense ElastiCube Manager (RDWeb)
  • Outgoing ports for DB connectors

Anti-Virus

Sisense runs anti-virus software on its cloud servers.

Restricted Access to Sisense Server

Secure Business Flow

To minimize the possibility of a security breach when working with the Sisense Software on the Sisense Cloud, Sisense has established security controls covering the entire business cycle.

Sisense Deployment Architecture to Prevent Direct Access to Server

Sisense deploys the Software in a cloud architecture that enables use the Software while restricting the Customer's direct access to the Sisense server. Customers have no access to the server, except via the UI.

Secure Web Access

Web access uses secure HTTPS secure protocol with *.sisense.com certificate (other domain certificate can be configured upon request).

No Third Party Software on Sisense Cloud Server

To ensure the tight security, no Customer software other than Sisense can be installed on the Sisense Cloud server. This restriction includes browsers, which are blocked on the server to prevent infiltration from the internet.

Customer Security Responsibilities

The Sisense Cloud is intended to be connected to Customer systems and networks that Sisense does not control. The Customer is responsible for maintaining security on its own systems and networks and ensuring that the channels it uses to access the Sisense Cloud are protected against malicious software and unauthorized access.

Customers should ensure that their authorized users adhere to Sisense's configuration guidance and use the Sisense Cloud only as directed.