Vertex Industries — Annual Report · 2025 10 / 15

Security & Trust

Security is a product feature

When software steers a production line, security is not a compliance exercise — it is part of what the customer buys. Vertex Industries treats it that way. Under Chief Security Officer Elif Demir, security engineers are embedded in every product team and a security operations centre in Zug watches around the clock. The 2025 financial year closed with zero material security incidents, across the group and the cloud platform alike.

Trust is earned in the open: ISO 27001 and SOC 2 Type II certifications, a public bug-bounty programme that triaged 480 reports in 2025, and published response times. Customers do not have to take our word for it — they can check.

Trust in numbers

2
Certifications
ISO 27001 and SOC 2 Type II, both renewed in 2025
480
Bug-bounty reports
Triaged by the public programme in 2025
99.98%
Cloud platform uptime
Measured across all regions
24/7
Security operations
The Zug SOC is staffed around the clock

Security, in plain terms

Certifications and audits

Certification Scope Auditor Last renewed
ISO 27001:2022 Group-wide information security management SGS Switzerland September 2025
SOC 2 Type II Vertex Cloud platform BDO Switzerland November 2025
IEC 62443-4-1 Secure product development lifecycle TÜV Süd June 2025
ISO 9001:2015 Quality management at all production sites SGS Switzerland March 2025
Zero material incidents is not a promise I will make in advance. What I can promise is the discipline that makes it likely: 480 reports from outside researchers triaged last year, and every one of them answered.
Elif Demir
Elif Demir
Chief Security Officer