Comparison Overview

Kier + Wright

2850 Collier Canyon Road, Livermore, California, 94551, US

Last Update: 2026-04-01

Between 750 and 799

http://www.kierwright.com

Kier + Wright (K+W) is a full-service civil engineering and land surveying firm that provides efficient, cost-effective, user-friendly civil engineering and land surveying services to clients of all types. We have been providing services of the highest quality to our clients since our doors opened in 1972. Civil engineering services include land planning, street and highway design, municipal consultation, utility engineering and the preparation of civil engineering plans for commercial, industrial and residential developments. Land surveying services include ALTA surveys, boundary and topographic surveys, subdivision mapping, monitoring surveys and construction staking. K+W has offices located in Livermore, Santa Clara, Irvine, Camarillo, Escondido, Sacramento, Manteca and Gilroy.

NAICS: 237

NAICS Definition:

Employees: 182

Subsidiaries: 1

12-month incidents

0

Known data breaches

0

Attack type number

0

View Profile

Downer

Triniti Business Campus, 39 Delhi Road, North Ryde, NSW, AU, 2113

Last Update: 2026-04-01

Between 750 and 799

http://www.downergroup.com

Enabling communities to thrive. It’s what we’ve done for more than 150 years. Solving problems. Making the extraordinary run smoothly every day. We’re keeping the lights on and the water flowing. Running the hospitals that take care of us. Delivering the transport that takes us from A to B. Maintaining communication networks that keep people connected. Helping our Government and Defence customers keep them protected. Delivering train fleets. Building bridges, roads and streets. Now we’re building momentum too. Moving forward even faster. Across Australia and New Zealand, we’re transforming the way we work. Unlocking our potential to lead by example. Using our passion and expertise to deliver complex projects and turn fresh ideas into solutions that make society a better place. Creating opportunities for our people, growth and value for our shareholders, and world-class solutions for our customers. Imagining. Innovating. Engineering. Enabling.

NAICS: 237

NAICS Definition: Heavy and Civil Engineering Construction

Employees: 17,988

Subsidiaries: 10

12-month incidents

0

Known data breaches

0

Attack type number

0

Kier + Wright

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Downer

—

ISO 27001

Not verified

—

SOC2 Type 1

Not verified

—

SOC2 Type 2

Not verified

—

GDPR

Not verified

—

PCI DSS

Not verified

—

HIPAA

Not verified

Incidents vs Civil Engineering Industry Average (This Year)

No incidents recorded for Kier + Wright in 2026.

Incidents vs Civil Engineering Industry Average (This Year)

No incidents recorded for Downer in 2026.

Incident History — Kier + Wright (X = Date, Y = Severity)

Kier + Wright cyber incidents detection timeline including parent company and subsidiaries

Incident History — Downer (X = Date, Y = Severity)

Downer cyber incidents detection timeline including parent company and subsidiaries

Kier + Wright

Incidents

No Incident

Downer

Incidents

No Incident

Downer company demonstrates a stronger AI Cybersecurity Score compared to Kier + Wright company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Historically, Downer company has disclosed a higher number of cyber incidents compared to Kier + Wright company.

In the current year, Downer company and Kier + Wright company have not reported any cyber incidents.

Neither Downer company nor Kier + Wright company has reported experiencing a ransomware attack publicly.

Neither Downer company nor Kier + Wright company has reported experiencing a data breach publicly.

Neither Downer company nor Kier + Wright company has reported experiencing targeted cyberattacks publicly.

Neither Kier + Wright company nor Downer company has reported experiencing or disclosing vulnerabilities publicly.

Neither Kier + Wright nor Downer holds any compliance certifications.

Neither company holds any compliance certifications.

Downer company has more subsidiaries worldwide compared to Kier + Wright company.

Downer company employs more people globally than Kier + Wright company, reflecting its scale as a Civil Engineering.

Neither Kier + Wright nor Downer holds SOC 2 Type 1 certification.

Neither Kier + Wright nor Downer holds SOC 2 Type 2 certification.

Neither Kier + Wright nor Downer holds ISO 27001 certification.

Neither Kier + Wright nor Downer holds PCI DSS certification.

Neither Kier + Wright nor Downer holds HIPAA certification.

Neither Kier + Wright nor Downer holds GDPR certification.

Description

Hirschmann EagleSDV version 05.4.01 prior to 05.4.02 contains a denial-of-service vulnerability that causes the device to crash during session establishment when using TLS 1.0 or TLS 1.1. Attackers can trigger a crash by initiating TLS connections with these protocol versions to disrupt service availability.

Published

Date

2026-04-02

Updated

Date

2026-04-02

Risk Information

cvss3

Base: 7.5

Severity: LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

cvss4

Base: 8.7

Severity: LOW

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

References

https://www.belden.com/security

Description

The stored API keys in temporary browser client is not marked as protected allowing for JavScript console or other errors to allow for extraction of the encryption credentials.

Published

Date

2026-04-02

Updated

Date

2026-04-02

References

Description

XSS vulnerability in cveInterface.js allows for inject HTML to be passed to display, as cveInterface trusts input from CVE API services

Published

Date

2026-04-02

Updated

Date

2026-04-02

References

Description

Multiple reflected cross-site scripting (XSS) vulnerabilities in the login.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda and red_url parameters.

Published

Date

2026-04-02

Updated

Date

2026-04-02

References

https://github.com/skit-cyber-security/ZenShare-Suite

Description

A reflected cross-site scripting (XSS) vulnerability in the login_newpwd.php endpoint of Interzen Consulting S.r.l ZenShare Suite v17.0 allows attackers to execute arbitrary Javascript in the context of the user's browser via a crafted URL injected into the codice_azienda parameter.

Published

Date

2026-04-02

Updated

Date

2026-04-02

References

https://github.com/skit-cyber-security/ZenShare-Suite

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Kier + Wright

VS

Downer

Kier + Wright

Downer

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Civil Engineering Industry Average (This Year)

Incidents vs Civil Engineering Industry Average (This Year)

Incident History — Kier + Wright (X = Date, Y = Severity)

Incident History — Downer (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Latest Global CVEs (Not Company-Specific)

CVE-2022-4986

Risk Information

CVE-2026-35467

CVE-2026-35466

CVE-2026-30252

CVE-2026-30251

Badge your company to reduce your risk score and your cyber insurance costs!

Comparison Overview

Kier + Wright

VS

Downer

Kier + Wright

Downer

Compliance Badges Comparison

Benchmark & Cyber Underwriting Signals

Incidents vs Civil Engineering Industry Average (This Year)

Incidents vs Civil Engineering Industry Average (This Year)

Incident History — Kier + Wright (X = Date, Y = Severity)

Incident History — Downer (X = Date, Y = Severity)

Notable Incidents

No Incident

No Incident

FAQ

Between Kier + Wright company and Downer company, which one has the best AI Cybersecurity Score ?

Between Kier + Wright company and Downer company, which one has experienced more cyber incidents in the past ?

Between Kier + Wright company and Downer company, which one has experienced more cyber incidents this year ?

Between Kier + Wright company and Downer company, which one has experienced at least one ransomware attack ?

Between Kier + Wright company and Downer company, which one has experienced at least one data breach ?

Between Kier + Wright company and Downer company, which one has experienced at least one targeted cyberattack ?

Between Kier + Wright company and Downer company, which one has experienced at least one vulnerability ?

Between Kier + Wright company and Downer company, which one holds the most compliance certifications ?

Between Kier + Wright company and Downer company, which one holds the fewest compliance certifications ?

Between Kier + Wright company and Downer company, which one has the most subsidiaries ?

Between Kier + Wright company and Downer company, which one has the largest number of employees ?

Between Kier + Wright and Downer, which company holds both SOC 2 Type 1 certifications ?

Between Kier + Wright and Downer, which company holds both SOC 2 Type 2 certifications ?

Which company is ISO 27001 certified — Kier + Wright or Downer ?

Which company is PCI DSS compliant — Kier + Wright or Downer ?

Between Kier + Wright and Downer, which company complies with HIPAA regulations for healthcare data ?

Between Kier + Wright and Downer, which company complies with GDPR requirements ?

Latest Global CVEs (Not Company-Specific)

CVE-2022-4986

Risk Information

CVE-2026-35467

CVE-2026-35466

CVE-2026-30252

CVE-2026-30251