# Sisense Cloud Security Controls

> Sisense Cloud is hosted on Amazon Web Services (AWS). This enables Sisense's software to take advantage of the robust security and compliance certifications available on AWS.

*Source: https://docs.sisense.com/main/SisenseLinux/sisense-cloud-security-controls.htm*

---

Last updated: June 10, 2026

|  |  |
| --- | --- |
| [Tier](https://www.sisense.com/pricing/#pricing) | [Deployment](https://docs.sisense.com/main/SisenseLinux/introduction-to-sisense-cloud-managed-services.md#ComparisonofManagedCloudandSelfHosted) |
| Grow    Enterprise | Cloud |

Sisense Cloud is hosted on Amazon Web Services (AWS). This enables Sisense's software to take advantage of the robust security and compliance certifications available on AWS. For more information about AWS Security, see [AWS Cloud Security](https://aws.amazon.com/security/). For a list of certifications and assurance programs, see [AWS Compliance](https://aws.amazon.com/compliance/).

**If you are new to Sisense, you can learn more about Sisense security [here](https://docs.sisense.com/main/SisenseLinux/security-at-sisense.md).**

  

## Sisense's System Environment Secure Deployment

### AWS Account Access Restriction

Access to Sisense Cloud environments is securely managed and restricted to authorized Sisense personnel with a demonstrated business need to maintain, troubleshoot, or support the platform. Access to the Sisense server may be required by IT, Sisense Cloud Service, or Sisense Support.

Support teams utilize a secure support tunnel, initiated only upon customer approval, to access customer environments. See [Cloud Support Access](https://docs.sisense.com/main/SisenseLinux/cloud-support-access.md) for more information about support access.

### Sisense Server

Sisense deploys a dedicated and isolated virtual server in the AWS for each Licensee. Each Licensee's
deployment is completely independent of, and does not have access to, any other Sisense Licensee's deployment.

### Control Open Ports

All incoming and outgoing ports are blocked by default. There is a predefined list of ports that are open for the
Sisense application, as follows:

- Incoming port for Sisense UI (HTTPS)
- Incoming port for access to Sisense ElastiCube Manager (RDWeb)
- Outgoing ports for DB connectors

### Anti-Virus

Sisense runs anti-virus software on its cloud servers.

## Restricted Access to Sisense Server

### Secure Business Flow

To minimize the possibility of a security breach when working with the Sisense Software on the Sisense Cloud, Sisense
has established security controls covering the entire business cycle.

### Sisense Deployment Architecture to Prevent Direct Access to Server

Sisense deploys the Software in a cloud architecture that enables use the Software while restricting the Customer's direct access to the Sisense server. Customers have no access to the server, except via the UI.

### Secure Web Access

Web access uses secure HTTPS secure protocol with \*.sisense.com certificate (other domain certificate can be
configured upon request).

## No Third Party Software on Sisense Cloud Server

To ensure the tight security, no Customer software other than Sisense can be installed on the Sisense Cloud server.
This restriction includes browsers, which are blocked on the server to prevent infiltration from the internet.

## Customer Security Responsibilities

The Sisense Cloud is intended to be connected to Customer systems and networks that Sisense does not control. The
Customer is responsible for maintaining security on its own systems and networks and ensuring that the channels it
uses to access the Sisense Cloud are protected against malicious software and unauthorized access.

Customers should ensure that their authorized users adhere to Sisense's configuration guidance and use the Sisense Cloud only as directed.
