xMatters has released an official statement and workshops to help customers navigate through COVID-19

Assurance Process

Audits

xMatters is ISO 27001:2013 certified and is about to initiate engagement for SOC 2 Type II report. In the meantime, an internal audit program was implemented for continuously monitoring, and improving the effectiveness of our security controls and compliance to privacy regulations. These activities are regularly performed by independent external assessors, authorized certification suppliers, and by xMatters Information Assurance Team. Audit results are discussed during management review meetings and all findings are tracked to resolution.

Vulnerability Management and Penetration testing

xMatters engages independent vendors to conduct application and infrastructure-level vulnerability scanning and penetration testing on the SaaS platform.

The Information Assurance department works with software engineering teams to continuously evaluate the software with advanced SAST and DAST tools, helping identify potential vulnerabilities, coding errors, and licensing issues in our codebase.

Third party penetration tests validate our security practices on a regular basis.