Escalation Policies
Escalation policies define how alerts are routed when incidents occur. They ensure that if the first responder doesn't acknowledge an incident, it automatically escalates to additional team members until someone responds.
Why Use Escalation Policies?
Without escalation:
- Alerts go to one person who might be unavailable
- Critical incidents go unnoticed
- Response times suffer
With escalation policies:
- Multiple team members are notified in sequence
- Unacknowledged incidents escalate automatically
- Someone always responds to critical issues
How Escalation Works
When a monitor triggers an incident:
- Step 1 fires immediately — Primary responders notified
- If not acknowledged within the delay, Step 2 fires — Secondary responders notified
- Pattern continues through all steps until acknowledged
Once someone acknowledges the incident, escalation stops.
Creating an Escalation Policy
Navigate to Escalation Policies
Go to Settings → Escalation Policies and click Create Policy.
Name your policy
Give the policy a descriptive name (e.g., "Production Critical", "Database Team").
Add escalation steps
Each step defines:
- Delay (minutes) — Wait time before this step fires
- Alert Channels — Which channels to notify
- Notify On-Call — Whether to notify the current on-call person
Save the policy
Click Create to save your escalation policy.
Every policy needs at least one step. Step 1 typically has a delay of 0 (fire immediately).
Escalation Steps
Steps are the building blocks of escalation policies.
Step Configuration
| Field | Description | Range |
|---|---|---|
| Step Order | Execution order (1, 2, 3...) | 1+ |
| Delay Minutes | Wait time before this step | 0-1440 (24 hours) |
| Alert Channel IDs | Channels to notify | UUID list |
| Notify On-Call | Also notify on-call person | true/false |
Example: 3-Tier Escalation
Step 1 (0 min delay):
- Notify: Slack #alerts channel
- Notify: On-call engineer
Step 2 (5 min delay):
- Notify: Email to engineering team
- Notify: SMS to team lead
Step 3 (15 min delay):
- Notify: Voice call to manager
- Notify: Slack #emergency channel
Assigning Policies to Monitors
Link escalation policies to monitors so incidents trigger the correct escalation flow.
Edit the monitor
Go to Monitors and select the monitor to configure.
Set escalation policy
In the monitor settings, select the Escalation Policy from the dropdown.
Save
Save the monitor. Future incidents will use this escalation policy.
Create different policies for different severity levels. Critical infrastructure might have a more aggressive escalation than development environments.
Step Timing
Understanding how delays work:
Timeline Example
For a policy with steps at 0, 5, and 15 minutes:
00:00 - Incident created
00:00 - Step 1 fires (0 min delay)
00:05 - Step 2 fires if not acknowledged (5 min delay)
00:15 - Step 3 fires if not acknowledged (15 min delay)
Choosing Delays
| Urgency | Suggested Delays |
|---|---|
| Critical | 0, 3, 10 minutes |
| High | 0, 5, 15 minutes |
| Medium | 0, 15, 30 minutes |
| Low | 0, 30, 60 minutes |
The maximum delay is 1440 minutes (24 hours). For longer escalation windows, use multiple policies or external incident management tools.
Integrating with On-Call Schedules
Each step can optionally notify the current on-call person from an on-call schedule.
Enable On-Call Notification
When creating a step:
- Enable Notify On-Call
- The step will notify whoever is currently on-call for the team
How It Works
- Step fires based on its delay
- PixoMonitor looks up current on-call person from the schedule
- Notifications sent to that person's configured channels
- If on-call has changed during escalation, the new person is notified
Team-Based Policies
Link escalation policies to teams for organized team management.
Create a Team Policy
Create the policy
Go to Settings → Escalation Policies → Create Policy.
Assign to a team
Select a team from the Team dropdown. This requires you to be a member of that team.
Configure steps
Add steps that use the team's alert channels and on-call schedule.
Team policies help organize escalations by department or function (e.g., "Database Team", "Frontend Team").
Editing Policies
Update existing policies as your team evolves.
Update Policy Details
- Go to Settings → Escalation Policies
- Click on the policy to edit
- Update name, description, or team assignment
- Click Save
Update Steps
When updating a policy, you can:
- Add new steps
- Remove existing steps
- Change step order
- Modify delay times
- Update alert channels
Changing a policy affects all monitors using it. Review assigned monitors before making changes.
Deleting Policies
Remove policies that are no longer needed.
- Go to Settings → Escalation Policies
- Find the policy to delete
- Click Delete
Before deleting, consider:
- Which monitors use this policy?
- Should they be assigned to a different policy first?
Example Policies
Small Team (2-3 people)
Step 1 (0 min):
- Slack #alerts
- On-call person
Step 2 (10 min):
- SMS to all team members
Medium Team (5-10 people)
Step 1 (0 min):
- Slack #alerts
- On-call person
Step 2 (5 min):
- Email to team
- Secondary on-call
Step 3 (15 min):
- SMS to team lead
- Voice call to on-call
Large Team / Enterprise
Step 1 (0 min):
- PagerDuty integration (webhook)
- On-call engineer
Step 2 (5 min):
- Secondary on-call
- Slack #incidents
Step 3 (10 min):
- Team lead (SMS + Voice)
- Slack #engineering-urgent
Step 4 (20 min):
- Engineering manager
- Executive Slack channel
Escalation and Acknowledgement
What Stops Escalation
Escalation stops when:
- Someone acknowledges the incident
- The incident is resolved
- All steps have fired
What Doesn't Stop Escalation
Escalation continues even if:
- Someone views the incident without acknowledging
- Alerts are sent (sending doesn't equal acknowledging)
Train your team to acknowledge incidents quickly. Acknowledgement means "I'm on it" — not "I've fixed it."
Best Practices
- Start broad, then narrow — First step to a channel, later steps to individuals
- Use increasing urgency — Slack → Email → SMS → Voice
- Include on-call — Always notify on-call in early steps
- Keep delays reasonable — Balance quick response with alert fatigue
- Test your policies — Verify escalation works before relying on it
- Document policies — Make sure team knows what to expect
- Review regularly — Update as team composition changes
Avoid creating policies with too many steps or very short delays. This can lead to alert fatigue and people ignoring escalations.