What is the official website of ISACA ?

The official website of ISACA is https://www.isaca.org.

What is ISACA's cybersecurity risk score?

ISACA has an AI-generated cybersecurity risk score of 755 out of 1000, indicating a Fair security posture according to Rankiteo's assessment.

How many security incidents has ISACA experienced?

According to Rankiteo, ISACA currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.

Has ISACA been affected by any supply chain cyber incidents ?

According to Rankiteo, ISACA has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.

Does ISACA have SOC 2 Type 1 certification ?

According to Rankiteo, ISACA is not certified under SOC 2 Type 1.

Does ISACA have SOC 2 Type 2 certification ?

According to Rankiteo, ISACA does not hold a SOC 2 Type 2 certification.

Does ISACA comply with GDPR ?

According to Rankiteo, ISACA is not listed as GDPR compliant.

Does ISACA have PCI DSS certification ?

According to Rankiteo, ISACA does not currently maintain PCI DSS compliance.

Does ISACA comply with HIPAA ?

According to Rankiteo, ISACA is not compliant with HIPAA regulations.

Does ISACA have ISO 27001 certification ?

According to Rankiteo,ISACA is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.

Which industry does ISACA operate in ?

ISACA operates primarily in the Industry Associations industry.

How many employees does ISACA have ?

ISACA employs approximately 1,323 people worldwide.

Does ISACA own any subsidiaries ?

ISACA presently has no subsidiaries across any sectors.

How many LinkedIn followers does ISACA have ?

ISACA's official LinkedIn profile has approximately 317,760 followers.

What is the NAICS classification code for ISACA ?

ISACA is classified under the NAICS code 81391, which corresponds to Business Associations.

Does ISACA have a Crunchbase profile ?

No, ISACA does not have a profile on Crunchbase.

Does ISACA have a LinkedIn profile ?

Yes, ISACA maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/isaca.

How many cybersecurity incidents has ISACA experienced ?

As of June 15, 2026, Rankiteo reports that ISACA has experienced 1 cybersecurity incidents.

How many peer or competitor companies does ISACA have ?

ISACA has an estimated 282 peer or competitor companies worldwide.

What types of cybersecurity incidents has ISACA faced ?

Incident Types: The types of cybersecurity incidents that have occurred include Cyber Attack.

NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop

WindowsmacOSLinux

Download

Badge your company to reduce your risk score and your cyber insurance costs!

Link verified badges to your company page to build trust with insurers and customers.

Apply now and get your badge!

Internal validation & live display

Insurers and partners see a safer profile

Faster underwriting decisions

Trusted by insurers. Chosen by leaders.

Proud contributor to the Society of Actuaries.

ISACA

Boost Score +25 with badge (5 left)

755

/1000

Fair

780

/1000

Fair

ISACA Vendor Cyber Rating & Cyber Score

isaca.org

Add Your Compliance Badge

ISACA® (www.isaca.org) represents the global workforce advancing trust in technology. For more than 55 years, ISACA has empowered its global community of 185,000+ members with the knowledge, credentials, training and network they need to thrive in fields like information security, governance, assurance, data privacy, risk management and emerging tech. With a presence in 195 countries and with nearly 230 chapters worldwide, ISACA offers resources tailored to every stage of members’ careers—helping them to thrive in a rapidly changing digital landscape, drive trusted innovation and ensure a more secure digital world. Through the ISACA Foundation, ISACA also champions IT education and career pathways for underrepresented and underresourced

ISACA A.I CyberSecurity Scoring

Scoring History

ISACA

ISACA CyberSecurity News & History

Past Incidents

Attack Types

Entity

Type

Severity

Impact

Seen

Blog Details

Supply Chain Source

Incident Details

View

ISACA

Cyber Attack

100

6/2025

ISA742060225

Loading…

A.I.

ISACA Company Scoring based on AI Models

Cyber Incidents Likelihood 3 - 6 - 9 months

Actual

Prediction

Incident Predictions locked

Access Monitoring Plan

A.I Risk Score Likelihood 3 - 6 - 9 months

Actual

Prediction A

Prediction B

Prediction C

Prediction D

A.I. Risk Score Predictions locked

Access Monitoring Plan

Loading…

Underwriter Stats for ISACA

Incidents vs Industry Associations Industry Avg (This Year)

No incidents recorded for ISACA in 2026.

Incidents vs All-Companies Average (This Year)

No incidents recorded for ISACA in 2026.

Incident Types ISACA vs Industry Associations Industry Avg (This Year)

No incidents recorded for ISACA in 2026.

Incident History - ISACA (X = Date, Y = Severity)

Loading…

SUBSIDIARY

ISACA Subsidiaries

Parent Company

ISACA

Industry Associations

Website: https://www.isaca.org

Company Size: 201-500 employees

No subsidiary data available for this company.

Loading…

ISACA Similar Companies

Loading…

NEWS

ISACA CyberSecurity News

Latest updates, reports, and threat intel affecting the global network.

March 27, 2026 07:30 PM

SC Awards Finalist: Best Professional Certification Program – ISACA – Mary Carmichael – SCA26 #1

At RSAC 2026, Mike Shema speaks with Mary Carmichael of ISACA, finalist for Best Professional Certification Program in the SC Awards...

Read Article

March 26, 2026 04:12 PM

ISACA Foundation Global Scholarship Program Expands to Equip Next-Gen Professionals

New ISACA Foundation scholarship applications are open now for undergraduate and graduate students seeking opportunities in IT and...

Read Article

March 24, 2026 06:08 PM

CISM vs. CISSP: Which Certification Should You Earn in 2026?

Compare CISM vs. CISSP certifications: exam details, career paths, requirements, and expert advice to choose the right cybersecurity...

Read Article

March 23, 2026 06:07 PM

New ISACA Research: 56% of Digital Trust Pros Don’t Know How Fast They Could Shut Down AI After a Security Incident

March 23, 2026 AI, Cybersecurity, Daily Update eBulletin, Industry Daily eBulletin, Industry News, Market News, Press Releases, Research Reports, Security,...

Read Article

March 12, 2026 07:00 AM

ISACA to build a skilled cyber security workforce in the age of AI

ISACA wants companies in Australia and New Zealand to understand the US Department of War's Cybersecurity Maturity Model Certification...

Read Article

March 10, 2026 07:00 AM

ISACA’s 2026 North America Conference to Highlight Governance and Trust in Emerging Technologies

Leading experts in the tech industry will gather at the ISACA 2026 North America Conference in Las Vegas, NV, from 6-8 May, to explore the...

Read Article

March 05, 2026 10:14 PM

Why influence matters this International Women's Day

On International Women's Day, cybersecurity leaders say progress means women shaping tech risk decisions, not just being in the room.

Read Article

February 20, 2026 08:00 AM

VIDEO - We’re Losing the Cyber War: Inside ISACA’s Mission to Build the World’s Largest Cybersecurity Certification Machine

Appointed by the US Department of War as the global credentialing authority for CMMC, ISACA's Chief Global Strategy Officer Chris...

Read Article

February 04, 2026 08:00 AM

ISACA Unveils 2026 Global Events Slate for Digital Trust Professionals

ISACA, a global association empowering the workforce advancing trust in technology, has released its 2026 event schedule,...

Read Article

Loading…

CVE

Latest

Global CVEs (Not Company-Specific)

CVE-2026-12191

SUMMARY

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdrive/modeld/modeld.py of the component Pickle Module. The manipulation results in deserialization. The attack is only possible with local access. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 7.8)

cvss2

Base Score: 6.8

Complexity: LOW

AV:L/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 7.8

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.1

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

1.8

REFERENCES

CVE-2026-12190

SUMMARY

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the component ai.mainfunc.genspark. The manipulation leads to improper authorization in handler for custom url scheme. The attack can only be performed from a local environment. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 4.8

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12189

SUMMARY

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzmate. Executing a manipulation can lead to improper authorization in handler for custom url scheme. The attack can only be executed locally. The exploit has been published and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 5.3)

cvss2

Base Score: 4.3

Complexity: LOW

AV:L/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 5.3

Complexity: LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 1.9

Complexity: LOW

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

1.8

REFERENCES

CVE-2026-12188

SUMMARY

A vulnerability was detected in Grit42 Grit up to 0.11.0. Affected by this issue is some unknown functionality of the file modules/core/backend/app/controllers/concerns/grit/core/grit_entity_controller.rb of the component GritEntityController. Performing a manipulation results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 6.3)

cvss2

Base Score: 6.5

Complexity: LOW

AV:N/AC:L/Au:S/C:P/I:P/A:P

cvss3

Base Score: 6.3

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

cvss4

Base Score: 2.1

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

3.4

Exploitability

2.8

REFERENCES

CVE-2026-12187

SUMMARY

A security vulnerability has been detected in GL.iNet GL-MT3000 up to 4.4.5. Affected by this vulnerability is an unknown functionality of the file /usr/bin/one_click_upgrade of the component Online Firmware Upgrade Handler. Such manipulation leads to command injection. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. Upgrading to version 4.7 addresses this issue. Upgrading the affected component is advised. The vendor was contacted early, responded in a very professional manner and quickly released a fixed version of the affected product.

Published

Date2026-06-14

Updated

Date2026-06-14

RISK INFORMATION (Score: 8.8)

cvss2

Base Score: 9.0

Complexity: LOW

AV:N/AC:L/Au:S/C:C/I:C/A:C

cvss3

Base Score: 8.8

Complexity: LOW

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

cvss4

Base Score: 7.4

Complexity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Impact Score

5.9

Exploitability

2.8

REFERENCES

Loading…

API

Access Data Using Our API

Get company history

curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?
linkedin_id=axa' -H 'apikey: YOUR_API_KEY_HERE'

Try It API Documentation Rapid

MEASURE

What Do We Measure ?

Incident

Finding

Grade

Digital Assets

Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.

These are some of the factors we use to calculate the overall score:

Network SecurityIdentify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.

SBOM (Software Bill of Materials)Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.

CMDB (Configuration Management Database)Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.

Threat IntelligenceLeverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.

Rankiteo

By Rankiteo

★ ★ ★ ★ ★

View on G2.com

Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.

View latest plans →View all security reports →

MILESTONEG

Users
Love Us

Loading…