xMatters has successfully completed its System and Organization Controls (SOC 2) Type II examination, an industry requirement for technology vendors that demonstrates a high level of governance and security.
xMatters was evaluated on controls and effectiveness over a period of six months. xMatters’ service commitments and system requirements were evaluated based on the trust services criteria relevant to security and availability with no exceptions noted.
Enterprises turn to xMatters for an adaptive approach to incident management that reduces friction in the continuous software development cycle. xMatters delivers digital service resilience through automation, collaboration and by using data to inform and evolve incident management processes to deliver the most reliable customer experiences.
xMatters protects personal and company data by ensuring secure and reliable collaboration within its SaaS platform. The company complies with strict privacy regulations and enterprise standards and has an Assurance Program in place. xMatters is also audited against a detailed set of standards set by the American Institute of CPAs (AICPA). Its security practices and controls are aligned with the highest internationally recognized standards, such as International Organization for Standardization (ISO) 27001, ISO 27017, ISO 27018, and now SOC 2 and SOC 3, a publicly available summary of the SOC 2 report.
“Thousands of our users around the world log large amounts of data in our systems every day and entrust their information to our data protection structure,” said Kendra Niedziejko, Data Protection Officer and CFO at xMatters. “This SOC 2 Type II report not only provides our customers with the ultimate confidence that their data will be safe and secure, but it also helps streamline the procurement process. Building on our commitment to support secure data processes, we strive to exceed the highest standards for privacy and security so we can provide an exceptional and safe SaaS experience.”
The company continues to invest in the security of its services to not only meet, but exceed, industry standards and customer expectations. Completion of the SOC 2 examination builds on a number of security and compliance-related certifications by xMatters this past year:
- ISO 27001: 2013 Information Security Management System (ISMS): Sets compulsory controls in different risk management areas, such as data security, vulnerability management, access control and business continuity. xMatters achieved the milestone with zero nonconformities.
- ISO 27017: 2015 ISMS Cloud Security: Primarily concerned with the relationship between SaaS providers and their customers by implementing additional key security controls.
-ISO 27018: 2019 Management System for protection of personally identifiable information (PII) in public clouds acting as PII processors.
The Latest
In MEAN TIME TO INSIGHT Episode 24, Shamus McGillicuddy, VP of Research, Network Infrastructure and Operations, at EMA discusses network observability tool sprawl ...
In cloud-native systems, scaling is often as simple as moving a slider. For on-premise databases, the stakes are different. Over-provisioning hardware is expensive. Under-provisioning leads to performance bottlenecks that are difficult to fix once the equipment is in the rack ...
When most people think about cybersecurity, they picture firewalls, encryption, and access controls — technical tools designed to protect systems and data. But beneath the technology lies a deeper set of principles about trust, decision-making, and resilience ... The best leaders don't eliminate risk. They manage it intelligently. And in many ways, cybersecurity offers a surprisingly useful playbook for doing exactly that ...
Many organizations assumed their infrastructure strategy was settled. It had been implemented, optimized and built into long-term plans. Recent changes in technology and vendor consolidation are forcing a second look. Cloud outages and licensing changes have exposed how much dependency exists on a small number of platforms. As a result, organizations are reevaluating whether those decisions still hold up under current conditions ...
Edge AI is strategically embedded in core IT and infrastructure spending across industries, according to the 2026 Edge AI Survey from ZEDEDA. The research shows that 83% of C-suite and IT executive respondents say edge AI is important to their core business strategy ...
As AI adoption accelerates, operational complexity — not model intelligence — is becoming the primary barrier to reliable AI at scale, according to the State of AI Engineering 2026 from Datadog ... The report highlights a compounding complexity challenge as AI systems scale ... Around 5% of AI model requests fail in production, with nearly 60% of those failures caused by capacity limits ...
For years, production operations teams have treated alert fatigue as a quality-of-life problem: something that makes on-call rotations miserable but isn't considered a direct contributor to outages. That framing doesn't capture how these systems fail, and we now have data to show why. More importantly, it's now clear alert fatigue is a symptom of a deeper issue: production systems have outgrown the current operational approaches ...
I was on a customer call last fall when an enterprise architect said something I haven't been able to shake. Her team had just spent four months trying to swap one AI vendor for another. The original plan said three weeks. "We didn't switch vendors," she told me. "We rebuilt half our integrations and discovered what we'd actually been depending on." Most enterprise leaders don't expect that to be the experience ...
Ask any senior SRE or platform engineer what keeps them up at night, and the answer probably isn't the monitoring tool — it's the data feeding it. The proliferation of APM, observability, and AIOps platforms has created a telemetry sprawl problem that most teams manage reactively rather than architect proactively. Metrics are going to one platform. Traces routed somewhere else. Logs duplicated across multiple backends because nobody wants to be caught without them when something breaks. Every redundant stream costs money ...
80% of respondents agree that the IT role is shifting from operators to orchestrators, according to the 2026 IT Trends Report: The Human Side of Autonomous IT from SolarWinds ...