xMatters has successfully completed its System and Organization Controls (SOC 2) Type II examination, an industry requirement for technology vendors that demonstrates a high level of governance and security.
xMatters was evaluated on controls and effectiveness over a period of six months. xMatters’ service commitments and system requirements were evaluated based on the trust services criteria relevant to security and availability with no exceptions noted.
Enterprises turn to xMatters for an adaptive approach to incident management that reduces friction in the continuous software development cycle. xMatters delivers digital service resilience through automation, collaboration and by using data to inform and evolve incident management processes to deliver the most reliable customer experiences.
xMatters protects personal and company data by ensuring secure and reliable collaboration within its SaaS platform. The company complies with strict privacy regulations and enterprise standards and has an Assurance Program in place. xMatters is also audited against a detailed set of standards set by the American Institute of CPAs (AICPA). Its security practices and controls are aligned with the highest internationally recognized standards, such as International Organization for Standardization (ISO) 27001, ISO 27017, ISO 27018, and now SOC 2 and SOC 3, a publicly available summary of the SOC 2 report.
“Thousands of our users around the world log large amounts of data in our systems every day and entrust their information to our data protection structure,” said Kendra Niedziejko, Data Protection Officer and CFO at xMatters. “This SOC 2 Type II report not only provides our customers with the ultimate confidence that their data will be safe and secure, but it also helps streamline the procurement process. Building on our commitment to support secure data processes, we strive to exceed the highest standards for privacy and security so we can provide an exceptional and safe SaaS experience.”
The company continues to invest in the security of its services to not only meet, but exceed, industry standards and customer expectations. Completion of the SOC 2 examination builds on a number of security and compliance-related certifications by xMatters this past year:
- ISO 27001: 2013 Information Security Management System (ISMS): Sets compulsory controls in different risk management areas, such as data security, vulnerability management, access control and business continuity. xMatters achieved the milestone with zero nonconformities.
- ISO 27017: 2015 ISMS Cloud Security: Primarily concerned with the relationship between SaaS providers and their customers by implementing additional key security controls.
-ISO 27018: 2019 Management System for protection of personally identifiable information (PII) in public clouds acting as PII processors.
The Latest
In MEAN TIME TO INSIGHT Episode 12, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at EMA discusses purchasing new network observability solutions....
There's an image problem with mobile app security. While it's critical for highly regulated industries like financial services, it is often overlooked in others. This usually comes down to development priorities, which typically fall into three categories: user experience, app performance, and app security. When dealing with finite resources such as time, shifting priorities, and team skill sets, engineering teams often have to prioritize one over the others. Usually, security is the odd man out ...
IT outages, caused by poor-quality software updates, are no longer rare incidents but rather frequent occurrences, directly impacting over half of US consumers. According to the 2024 Software Failure Sentiment Report from Harness, many now equate these failures to critical public health crises ...
In just a few months, Google will again head to Washington DC and meet with the government for a two-week remedy trial to cement the fate of what happens to Chrome and its search business in the face of ongoing antitrust court case(s). Or, Google may proactively decide to make changes, putting the power in its hands to outline a suitable remedy. Regardless of the outcome, one thing is sure: there will be far more implications for AI than just a shift in Google's Search business ...
In today's fast-paced digital world, Application Performance Monitoring (APM) is crucial for maintaining the health of an organization's digital ecosystem. However, the complexities of modern IT environments, including distributed architectures, hybrid clouds, and dynamic workloads, present significant challenges ... This blog explores the challenges of implementing application performance monitoring (APM) and offers strategies for overcoming them ...
Service disruptions remain a critical concern for IT and business executives, with 88% of respondents saying they believe another major incident will occur in the next 12 months, according to a study from PagerDuty ...
IT infrastructure (on-premises, cloud, or hybrid) is becoming larger and more complex. IT management tools need data to drive better decision making and more process automation to complement manual intervention by IT staff. That is why smart organizations invest in the systems and strategies needed to make their IT infrastructure more resilient in the event of disruption, and why many are turning to application performance monitoring (APM) in conjunction with high availability (HA) clusters ...
In today's data-driven world, the management of databases has become increasingly complex and critical. The following are findings from Redgate's 2025 The State of the Database Landscape report ...
With the 2027 deadline for SAP S/4HANA migrations fast approaching, organizations are accelerating their transition plans ... For organizations that intend to remain on SAP ECC in the near-term, the focus has shifted to improving operational efficiencies and meeting demands for faster cycle times ...
As applications expand and systems intertwine, performance bottlenecks, quality lapses, and disjointed pipelines threaten progress. To stay ahead, leading organizations are turning to three foundational strategies: developer-first observability, API platform adoption, and sustainable test growth ...