SysOS Help Center
Security

Incident Response

This article describes how SysOS detects, responds to, and communicates about security and availability incidents. It is a general overview of our process.

Detection

  • Continuous monitoring of application health and traffic.
  • Automated alerts on anomalies and error spikes.
  • Audit logs that record sensitive actions.

Response stages

  • Identify: confirm the incident and assess scope.
  • Contain: limit impact and stop the spread.
  • Eradicate: remove the root cause.
  • Recover: restore normal service, using backups if needed.
  • Review: run a post-incident review to prevent recurrence.

Communication

For incidents that affect you, we aim to communicate clearly through in-app notices and direct contact where appropriate, including what happened and what to do.

Your role

  • Report anything suspicious through your administrator promptly.
  • Keep administrator contact details current so we can reach you.

After an incident

We document lessons learned and apply fixes to reduce the chance of a repeat. Self-healing safeguards recover automatically from many transient faults.