In today’s threat landscape, perimeter-based security is no longer enough. Pega Cloud is built on Zero Trust Architecture and the principle that no user, connection, or request is trusted by default. Every access attempt is verified, every environment is isolated, and every layer of your application is protected.
Identity and access, rigorously controlled. Pega Cloud supports single sign-on, multi-factor authentication, and seamless integration with your existing identity providers. Role-based, attribute-based, and client-based access controls enforce least-privilege access so that users get exactly what they need to do their job, and nothing more.
Isolated environments, continuous monitoring. Every client operates in its own secure, segmented environment with strict inbound and outbound traffic rules. A multi-layered architecture and Web Application Firewall defend against DDoS attacks, while Pega’s Global Operations Center monitors threats around the clock. Security events are streamed in near real time to Pega’s SIEM system, enabling rapid detection and response.
Connectivity and data protection you can count on. Pega Cloud Secure Connect leverages AWS PrivateLink and GCP Private Service Connect to create a clean, zero-trust separation between Pega Cloud and your private networks. To protect everything everywhere, data is encrypted in transit with TLS and at rest with AES.
For government agencies and regulated industries, Pega Cloud for Government brings this same Zero Trust rigor to compliance-ready infrastructure designed for the highest-stakes environments.
At Pega, security isn’t a feature. It’s the foundation everything else is built on.
Learn more: