reference deployment

Informatica Secure@Source on AWS

Data security intelligence and analytics on the AWS Cloud

This Quick Start deploys Informatica Secure@Source on the Amazon Web Services (AWS) Cloud.

Informatica Secure@Source provides global visibility of sensitive data assets, actionable insights into sensitive data risks, timely detection of insider and outsider threats, and accurate identification of high risk conditions to support data security, compliance, and governance.

The Quick Start provisions a single-node or multi-node, configurable, embedded cluster for the Informatica domain and Secure@Source in your AWS account. It deploys Informatica components for extracting, storing, and analyzing metadata, capturing and processing user activity and behavior analytics, data integration, cataloging, administration, and similar services.



This Quick Start was developed by Informatica in collaboration with AWS. Informatica is an
APN Partner.

  •  What you'll build
  •  How to deploy
  •  Cost and licenses
  •  What you'll build
  • Use this Quick Start to set up the following environment on AWS:

    • A virtual private cloud (VPC) configured across two Availability Zones with two public and two private subnets, to provide the network infrastructure for your deployment.*
    • An internet gateway to provide access to the internet, and managed network address translation (NAT) gateways configured with Elastic IP addresses for outbound Internet connectivity.*
    • An IAM role with fine-grained permissions for access to AWS services necessary for the deployment process, and appropriate security groups to restrict access to only necessary protocols and ports.
    • In the private subnets, Informatica domain and repository databases hosted on Amazon Relational Database Service (Amazon RDS) using Microsoft SQL Server.
    • In the public subnets, EC2 instances for Secure@Source, including a configurable single-node or multi-node, embedded cluster, scanners for extracting metadata, and Informatica services for data integration, cataloging, and profiling.
    • Data sources representing the source databases or metadata sources that Secure@Source scans to identify sensitive data.

    * The template that deploys the Quick Start into an existing VPC skips the tasks marked by asterisks and prompts you for your existing VPC configuration.

  •  How to deploy
  • Deploy Secure@Source on AWS in a few simple steps:

    1. If you don't already have an AWS account, sign up at If you're using your existing account, you might need to request service limit increases for the EC2 instance type, Elastic IP addresses, and other AWS resources you'll be using in this deployment.
    2. Obtain a license for Secure@Source by registering on the Informatica website, and place the license key in an S3 bucket.
    3. Launch the Quick Start. The deployment takes approximately three hours. You can choose from two options:
    4. Get started with Secure@Source by following the steps in the Informatica documentation.

    Please know that we may share who uses AWS Quick Starts with the AWS Partner Network (APN) Partner that collaborated with AWS on the content of the Quick Start.

    To customize your deployment, you can choose different instance types for your resources and configure the size of the Informatica embedded cluster. You can also choose to import sample catalog data to get started using Secure@Source on AWS.

  •  Cost and licenses
  • You are responsible for the cost of the AWS services used while running this Quick Start reference deployment. There is no additional cost for using the Quick Start.

    The AWS CloudFormation template for this Quick Start includes configuration parameters that you can customize. Some of these settings, such as instance type, will affect the cost of deployment. See the pricing pages for each AWS service you will be using for cost estimates.

    This Quick Start requires a license for Secure@Source. To sign up for a trial license, please register on the Informatica website.