<< Click to Display Table of Contents >> Navigation:  Bizagi Cloud Platform > Security

Overview

Bizagi Cloud Platform security features comply with the latest industry standards for data security and privacy.

Bizagi implements service controls for data security, availability, processing integrity, and confidentiality while enforcing policies and processes to guarantee a robust security initiative for Bizagi as your service provider.

 

Bizagi Cloud Platform Security

Ensuring the security of the Bizagi Cloud Platform requires a comprehensive approach that includes measures such as managing access to information, data security, network and infrastructure security, and vulnerability management. This section describes some best practices that Bizagi uses to protect data and applications in the cloud.

 

Managing Access to Information

Bizagi Cloud Platform provides a variety of configuration options for user access to information, with many levels on which those permissions can be configured.

 

Bizagi Modeler

Bizagi offers configuration options regarding user access to models, and there are two levels on which you can configure those permissions.

•Configuring access rights to models based on a role access model.

•Defining permission levels that determine the features in a particular model that are available to a given user.

See: Modeler users and roles and Model Collaboration.

 

Bizagi Studio Cloud Services

Studio Cloud Services provides a collaborative environment in which you and your coworkers can work on the same project at the same time. If you have several processes in your project, you might need to restrict access to some resources to prevent other users from modifying objects that will affect other processes.

See: Defining Bizagi Studio security

 

Bizagi Automation Service

There are many levels at which you can configure the information your users have access to.

See: Managing Access to Information

 

Security controls

Bizagi implements security controls and measures for data integrity, confidentiality and availability aligned to leading information security standards and frameworks such as ISO 27001, NIST and FedRAMP.

•Access Controls and Authentication

•Audit and Accountability

•Change Control and Configuration Management

•Incident Response

•Physical Security

•Role-Based access control model

•Secure Software Development process

•Workforce Security

 

Network and infrastructure security

To provide a high level of security, in addition to other security controls, Bizagi Cloud Platform relies on network isolation measures and security components such as:

•Application Gateway

•WAF

•Firewall

•Network Intrusion Detection System (IDS)

•Virtual Private network (VPN)

•Whitelist

 

Malware protection

Bizagi follows a malicious software detection and prevention process to maintain a secure environment for the Bizagi Cloud Platform customer, including the timely application of patches, fixes, and updates to services and applications. Bizagi enforces Change Management and Vulnerability Management policies.

 

Data Security

Bizagi Cloud Platform includes data encryption for data at rest and in transit, as well as other security controls, to provide a higher level of data security.

•Data encryption in transit (TLS)

•Data encryption at rest (TDE)

 

Risk Assessment and Vulnerability Management

Bizagi follows a Risk management methodology. The purpose of this methodology is to establish guidelines for information security and privacy risk analysis and management. Bizagi performs:

•Vulnerability Scanning.

•Internal penetration tests are performed for each update.

•External penetration test is performed at least once a year.

Penetration test meets the OWASP and OSSTMM standards.

 

Logging and Continuous Monitoring

Monitoring and logging for Bizagi Cloud Platform services, applications, systems, data repositories, middleware, and applicable infrastructure in general, is in place.

Logs are examined for unusual behavior, and the service as a whole is monitored so that staff is notified of any anomalies.

•Bizagi monitors the services and underlying technology of Bizagi Cloud Platform around the clock.

•Monitoring the availability, resource consumption and performance of the Bizagi Cloud Platform.

 

Business Continuity and Operational Resilience

•Bizagi performs different types of backups of the production environment database.

•To protect the service and customer data from data center failures, Bizagi Cloud Platform  uses Azure Availability Zones.

•Reliability is designed for all underlying services of the Bizagi Cloud Platform and is especially enforced through a highly available storage layer.

•Bizagi provides Disaster Recovery (DR) services to increase the dependability of Automation Service.

 

Regulatory compliance

Bizagi is compliant with global regulations.

•Bizagi is HIPAA compliant.

•Bizagi is GDPR compliant.

•Bizagi is FedRAMP authorized.

•Bizagi is ISO 27001 certified.

Last Updated 8/16/2023 9:20:09 AM