Technical and Organizational Security Measures
Penetration Test
Zilliz Cloud conducts regular third-party penetration tests to identify and remediate security vulnerabilities before they can be exploited. These assessments are performed annually and after significant changes to the system.
Statement of Applicability
Zilliz has developed a Statement of Applicability (SoA) as part of its ISO/IEC 27001:2022 implementation, identifying and justifying the applicability of each of the 93 Annex A controls. The SoA reflects Zilliz’s current risk environment, operational context, and the specific security controls that have been implemented, excluded, or not applicable, with appropriate justifications. This document is reviewed and updated regularly as part of our information security management system (ISMS).
Business Continuity
Zilliz Cloud has a business continuity and disaster recovery plan designed to minimize downtime and ensure service availability. These plans are tested regularly to validate their effectiveness.
Incident Response
Our incident response program includes defined roles, escalation paths, and communication protocols to rapidly detect, contain, and recover from security incidents. We conduct regular tabletop exercises.
Note: The above documents are available upon signing a Non-Disclosure Agreement (NDA).
Get the TOMs
Loading...