Skip to main content

Blueprint on a managed, AI-enabled cloud platform

When Blueprinting a Pega solution, one of the earliest decisions is the delivery model, often determined before the first whiteboard session. That decision shapes everything that follows: how fast the team can ship changes, how scaling events are handled, what the security posture looks like, and who owns updates. The Solution Designer aligns the Blueprint to the delivery model that best fits the application, rather than forcing the application to fit Pega Infinity™ later.

The challenge most Solution Designers encounter is not technical; it is operational. In a self-managed cloud deployment, the client's teams are responsible for managing complex infrastructure, coordinating environments, maintaining services, handling security updates, and planning scaling events across multiple teams. This overhead competes with their capacity to innovate.

In the following video, Don Schuerman, Pega CTO and Head of Marketing, states, "For most organizations, investing resources and building out the containers and backing services, runbooks and skills that Pega needs means you are distracting your teams from actually doing the innovation and taking advantage of our latest features."

VIDEO

The outcome a Solution Designer works toward is not a cloud deployment. It is an environment where the platform carries the infrastructure weight so the client's teams can focus on building better experiences. Pega Cloud® makes that possible. The following results support that case:

  • 250,000+ engineering hours invested by Pega in building its Global Operations Centers (GOC), combining specialized technology, deep automation, and expert personnel
  • 65% reduction in Severity 1 tickets as a direct result of increased platform stability
  • 25% faster deployment of changes through GOC automation
  • Tens of millions of metric tons of CO2 reduced through Pega infrastructure resource optimizations

Don Schuerman notes that the statistics, while compelling, are secondary: "While those benefits are amazing, they pale in comparison to the benefits that you get when your innovation is unfettered."

The freedom to focus on building better experiences for customers and employees is the payoff Pega Cloud delivers. The following section explains how Pega Infinity makes that possible through enterprise-grade security, streamlined DevOps, and mission-critical performance.

Pega Cloud and Pega as a Service

Before exploring each area, understand the distinction between two terms that often appear together but mean different things:

Pega Cloud is the fully managed delivery platform. It runs on Amazon Web Services (AWS) and Google Cloud Platform (GCP), and it provides the compute, storage, networking, and Pega Infinity™ software layers that power your deployment.

Pega as a Service is the operational model that Pega Cloud enables. It is the set of responsibilities that Pega takes on so that you do not have to.

Security: Built for enterprise trust

When blueprinting for a regulated industry, identify the security constraints your architecture must satisfy, and determine which Pega Infinity handles and which remain the organization's responsibility.

What Pega Cloud provides by design:

Pega Cloud operates on a Zero Trust Architecture: every request is authenticated and authorized, client environments are strictly isolated, and network boundaries are enforced with inbound and outbound traffic rules and a Web Application Firewall (WAF) that defends against Distributed Denial of Service (DDoS) attacks. Encryption is applied at every layer: 256-bit Advanced Encryption Standard (AES) at rest and Transport Layer Security (TLS) for data in transit.

For AI workloads, Pega Infinity does not log customer data processed through Pega GenAI™. Client prompts and completions are never shared across tenants, and they are never used to train external large language models. This is a technical boundary built into Pega Infinity, not a policy preference.

Built-in AI safeguards include:

  • Data masking: prompt masking prevents Personally Identifiable Information (PII) from being sent to external model providers
  • Content filtering: built-in filters mitigate bias, toxicity, and hallucination risks
  • Human-in-the-loop oversight: governance controls keep humans accountable for AI-driven decisions

The Pega Cloud Assistant, available in the My Pega Cloud portal, gives designated security contacts a conversational interface to query security configurations, review network settings, and receive proactive recommendations without requiring specialized infrastructure expertise.

A dedicated security team provides 24x7 monitoring using a Security Information and Event Management (SIEM) system for near-real-time threat detection, host-based intrusion prevention, and daily anti-malware updates. Compliance certifications, including ISO 27001, SOC 2 (Type I and II), FedRAMP, PCI DSS, and HIPAA, are available through the Pega Trust Center.

Note: Pega Infinity provides the tools, controls, and architecture that clients use to implement their own compliance strategies. The responsibility for access control, multi-factor authentication, and application-level login management remains with the client or partner team.

DevOps: Remove the friction, accelerate innovation

The delivery pipeline is a core component of any Pega blueprint. A Solution Designer who does not understand what Pega Infinity provides will produce a delivery model that either underestimates effort or duplicates work that Pega Infinity already handles.

What Pega Cloud provides:

Pega Deployment Manager is the primary built-in tool for continuous integration and continuous deployment (CI/CD) on Pega Cloud. It automates the full pipeline: branch merging, validation, application packaging, artifact deployment, and test running. Teams manage these steps from a low-code, model-driven interface. Guardrail compliance and test coverage enforcement are built in, so quality gates are automatic, not manual. Teams can use default pipeline recommendations or customize stages and tasks for their specific release process.

Open DevOps means the target architecture does not require clients to abandon their existing tooling. Pega Infinity integrates with standard enterprise DevOps ecosystems, so teams can incorporate their preferred automation, version control, and testing tools into the delivery pipeline.

The Route to Live is a prescriptive, standardized path in Pega Infinity from development to production. It uses a single source environment as the "source of truth," branch-based development with quality gates before merge, and automated regression testing on staging before production deployment. The recommended feedback cycle, which is the time from a developer committing a change to receiving validation, is 15 minutes or less.

Pega GenAI Autopilot™ reduces test creation effort by automatically generating API and user interface tests based on Cucumber and Playwright. It analyzes the application using generative AI and produces test coverage without manual scripting.

DevSecOps Agents provide always-on security and performance monitoring with AI-generated remediations built directly into the development pipeline. Security is embedded in the build process rather than added after the build is complete.

Note: Pega as a Service removes the infrastructure layer. Pega Infinity DevOps tooling removes the pipeline friction. The result is a delivery environment where teams can deploy changes quickly and reliably.

Performance: Architecting for resilience and AI-scale workloads

As AI workloads intensify, the performance demands on the underlying platform increase accordingly. When scoping a Pega project, the Solution Designer should understand what Pega Infinity is built to carry and what the operational model means for the client's uptime commitments.

What Pega Cloud provides:

Pega Diagnostic Center (PDC) is deployed to all Pega Cloud environments and provides real-time application performance monitoring across web interactions, case processing, and system health. It gives operations teams and the Pega GOC continuous visibility before issues escalate to incidents.

The infrastructure architecture is designed for resilience:

  • Kubernetes and microservices enable dynamic auto-scaling, expanding capacity automatically in response to demand without requiring client coordination
  • Cross-availability zone resiliency through AWS and GCP means that a failure in one zone does not impact application availability
  • Automated failover and disaster recovery are handled by Pega Infinity, with backups and uptime monitoring managed 24x7

The operational results are measurable. Pega as a Service resolves performance issues 50% faster than client- or partner-managed deployments, because GOC automation identifies and acts on signals before they become visible to end users. Scaling events that previously required multi-stakeholder planning cycles now happen automatically, within the contracted infrastructure boundary.

Note: Stakeholders can commit to enterprise-scale AI rollouts with confidence that Pega Infinity is built to support that demand.

This Topic is available in the following Module:
If you are having problems with your training, please review the Pega Academy Support FAQs.

Did you find this content helpful?

Yes
No

Want to help us improve this content?
Suggest an edit

We'd prefer it if you saw us at our best.

Pega Academy has detected you are using a browser which may prevent you from experiencing the site as intended. To improve your experience, please update your browser.

Close Deprecation Notice