Security and privacy are top priority at Cube, with Cube Cloud providing secure infrastructure options, single sign-on (SSO) authentication through SAML 2.0 and OAuth 2.0, role-based access control (RBAC), compliance with regulations such as SOC 2, HIPAA, and GDPR, and many more security features.
Today, we're happy to introduce Audit Log, a new Cube Cloud feature to collect, store, and display security-related events within a Cube Cloud account. You can use Audit Log to maintain and review a historical record of activity across all Cube Cloud deployments for compliance purposes, incident troubleshooting, and ensuring accountability of your semantic layer users.
See how Audit Log works in action:
Use cases
We expect Audit Log to be particularly useful to Cube Cloud users who would like to ensure their compliance with industry regulations and standards. You can find security controls that mandate or strongly recommend audit logging in NIST SP 800-53, HIPAA, FedRAMP, PCI DSS, GDPR, ISO 27001, and other widely adopted security standards.
Additionally, if you ever have to do a reconstruction of events during an incident investigation, you might find Audit Log extremely convenient. In that case, it's best to make sure Audit Log is enabled in advance.
Finally, you can employ Audit Log to help enforce accountability for semantic layer administrators and prevent internal fraud. In the end, knowing who did what within a Cube Cloud account is quite nice to have.
For your convenience, Audit Log provides a UI that displays events in a table-like format and allows to drill down to any event to review its attributes such as a user name, a deployment name (if relevant), a timestamp, and additional data.
Audit Log collects an extensive list of event types and provides an option to download event data in case you'd like to analyze them offline or using an external application. You can learn more in the documentation.
How to use
Audit Log is available as an add-on on the Enterprise Premier tier. Using Audit Log consumes 4 CCU per hour and provides event retention for the last 30 days. See resources and limits for more details. Contact your customer success manager or fill in this form to enable Audit Log for your Cube Cloud account.