PlatformApplicable to all products in Temenos Journey Manager. | All Personas | All versions This feature is related to all versions.
When running the Temenos Journey Manager platform, several editions are available which are suitable for organizations with the highest requirements for privacy and security. These editions are the Private Cloud Enterprise Edition or Virtual Data Centre Edition (VDC). These editions are cloud based, on either AWS or Azure, to provide maximum agility and include multiple servers to ensure high availability.
The Temenos Journey Manager platform by design is a short term storage solution that does not retain Personally Identifiable InformationPersonally Identifiable Information (PII) is information about an individual that can be used to distinguish or trace an individual‘s identity, such as name, social security number, date and place of birth, mother‘s maiden name, or biometric records; and any other information that is linked to an individual. In Europe, PII is known as personal data. longer than a customer's data retention policies allow.
Use the matrix to compare the VDC and Enterprise Editions, depending on your requirements.
Features | VDC Edition | Enterprise Edition |
---|---|---|
Redundancy & Availability | ||
High AvailabilityHigh availability (HA) is a characteristic of a system which aims to ensure an agreed level of operational performance, usually uptime, for a higher than normal period. Application Servers (Multi-AZ) (Traffic load balanced across application servers in separate data centers) | ||
TJM Application Server Nodes (Production) 2+2 = 2x /manager (admin) portal nodes + 2x /workspace portal nodes HA = High Availability (nodes deployed into separate AWS AZs) | 4+ (HA) (2+2) | 2 (HA) |
High Availability RDS Database Server Replicated across separate data centers (Multi-AZ) | ||
Non-production environments (Test, UAT, Stag, etc) included | 3 | 2 |
Production - Service Level Availability Target (monthly) | 99.9% | 99.5% |
Number of countries supported (i.e. tenants) (TJM organizations cannot be used to segregate country solutions, or deploy additional instances) | 1 | 1 |
Extra countries/tenants Available (POA) | N/A | |
RDBMS | Aurora | Aurora |
Backup & Recovery | ||
Database Backup Frequency | Continuous | Continuous |
Backup Frequency (RPORecovery point objective (RPO) is the age of files that must be recovered from backup storage for normal operations to resume if a computer, system, or network goes down as a result of a hardware, program, or communications failure.) | ~ 5 minutes | ~ 5 minutes |
Database Recovery Time (RTORecovery Time Objective (RTO) is the targeted duration of time and a service level within which a business process must be restored after a disaster (or disruption) in order to avoid unacceptable consequences associated with a break in business continuity.) | 4 hours | 8 hours |
Security | ||
Customer Virtual Private Cloud (solution installed in customer-specific AWS VPC with private subnets) | ||
Data Sovereignty - All data resides in same geographic region. Regions are US (Oregon), EU (Ireland), Asia Pacific (Sydney), and other AWS Regions available as required | ||
Strong AES 256-bit data encryption for data in transit and at rest | ||
Separate security subnets for production and non-production environments | ||
IP White-listing | ||
Automatic updates for OS & security vulnerability patches | ||
Anti-virus scanning | ||
Dedicated Database Server in same Virtual Private Cloud | X | |
Separate administration and end user portal servers *separate URL endpoint for Manager and Portal | X | |
Encryption Data Key Management | Amazon KMS | Amazon KMS |
Internal vulnerability scanning – Continuous (Qualys Cloud Agent) | X | |
External vulnerability scanning - Monthly (Qualys WAS scan) | X | |
Third-party penetration testing - Annually |
Available (POA) |
Available (POA) |
Akamai - for WAF and CDN | Available (POA) | Available (POA) |
Network Connectivity Features | ||
AWS VPC Peering (Connect 2 AWS accounts; no service cost - AWS Doc) | Available | Available |
AWS Direct Connect (Connect AWS to on premise; service cost not included - AWS Doc) | Available (POA) | Available (POA) |
AWS VPN Site to Site | Available (POA) | Available (POA) |
Advanced Security Features | ||
Web Application Firewall (WAF) | Apache ModSecurity (fixed customized rules) | Apache ModSecurity (fixed customized rules) |
Network Protection (Deep packet inspection, Flood protection, DoS, DDoS and port scan blocking, Country blocking) | AWS Shield Standard (no DPI and Country blocking) | AWS Shield Standard (no DPI and Country blocking) |
Outbound Proxy (whitelist) | X | |
Security Extras | ||
AWS Dedicated Instances (dedicated hardware for application servers - AWS Doc) | Available (POA) | X |
Additional IPS / UTM (Sophos Unified Threat Management) layer (AWS Doc) | Available (POA) | X |
Platform Issue - Response Times and SLAs – Production | ||
Refer to your contract for all SLAs for Production Response Times and Production Resolution Times. These may vary between clients due to different support agreements negotiated between Temenos and the client. |
If you have any further questions or you need more information including pricing, contact your Customer Success Manager.
Next, learn about the Temenos Journey Manager platform system requirements.