Kiewit
Company Details
Linkedin ID:
kiewit
Website:
Employees number:
24,434
Number of followers:
939,803
NAICS:
23
Industry Type:
Homepage:
kiewit.com
IP Addresses:
0
Company ID:
KIE_4524136
Scan Status:
In-progress
Kiewit Company CyberSecurity Posture
kiewit.com
At Kiewit, the projects we deliver make a difference, and we offer opportunities for you to make one, too. Our construction and engineering professionals work on some of the industry’s most complex, challenging and rewarding projects – whether it’s boring tunnels through mountains, turning rivers into energy, or building bridges that connect communities. Kiewit people tackle important projects of every size, in any market. Start your Kiewit adventure today at kiewitjobs.com. Kiewit is one of North America’s largest and most respected construction and engineering organizations. With its roots dating back to 1884, the employee-owned organization operates through a network of subsidiaries in the United States, Canada, and Mexico. Kiewit offers construction and engineering services in a variety of markets including transportation; oil, gas and chemical; power; building; marine; water/wastewater; industrial; and mining. We are an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Kiewit A.I CyberSecurity Scoring
Kiewit Risk Score (AI oriented)Between 750 and 799
Kiewit
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Kiewit Global Score (TPRM)XXXX
Kiewit
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Kiewit Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
Kiewit Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Kiewit
Incidents vs Construction Industry Average (This Year)
No incidents recorded for Kiewit in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Kiewit in 2025.
Incident Types Kiewit vs Construction Industry Avg (This Year)
No incidents recorded for Kiewit in 2025.
Incident History — Kiewit (X = Date, Y = Severity)
Kiewit cyber incidents detection timeline including parent company and subsidiaries
Kiewit Company Subsidiaries
At Kiewit, the projects we deliver make a difference, and we offer opportunities for you to make one, too. Our construction and engineering professionals work on some of the industry’s most complex, challenging and rewarding projects – whether it’s boring tunnels through mountains, turning rivers into energy, or building bridges that connect communities. Kiewit people tackle important projects of every size, in any market. Start your Kiewit adventure today at kiewitjobs.com. Kiewit is one of North America’s largest and most respected construction and engineering organizations. With its roots dating back to 1884, the employee-owned organization operates through a network of subsidiaries in the United States, Canada, and Mexico. Kiewit offers construction and engineering services in a variety of markets including transportation; oil, gas and chemical; power; building; marine; water/wastewater; industrial; and mining. We are an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law.
Loading...
Kiewit Similar Companies
Tekfen Construction
Tekfen Contracting Group is one of the two most prominent groups of Tekfen Holding, with its more than 17 thousand employees, nearly 2 billion USD of active portfolio and over 330 projects undertaken successfully to date. The Group is considered as one of the biggest institutions in Turkey, in terms
Kier Group
Our purpose is to sustainably deliver infrastructure which is vital to the UK. As a leading provider of infrastructure services, construction and property developments, we are committed to delivering for communities and leaving lasting legacies through our work. We are committed to attracting, reta
Bechtel is a trusted engineering, construction and project management partner to industry and government. Differentiated by the quality of our people and our relentless drive to deliver the most successful outcomes, we align our capabilities to our customers’ objectives to create a lasting positive
REXEL USA
REXEL, LEADING DISTRIBUTOR WORLDWIDE OF ELECTRICAL SUPPLIES Rexel, a global leader in the distribution of electrical supplies and services, serves three main end markets: industrial, commercial and residential. The Group operates in 38 countries, with a network of some 2,200 branches, a distributio
Hilti Group
Hilti stands for innovation and direct customer relationships. About 34,000 employees around the world, in more than 120 countries, contribute to making our customers’ work more productive, safer and more sustainable. We do this with our hardware, software and service offering. With roughly 280,000
Royal BAM Group
🏗️ Building a Sustainable Tomorrow at BAM! As leaders in the construction industry, we are committed to pioneering sustainable practices that not only enhance our projects but also contribute to a better future for generations to come. Our strategy revolves around focusing to protect profitabilit
KEC International Ltd.
KEC International Limited, the flagship company of RPG Enterprises is a diversified global infrastructure Engineering, Procurement & Construction (EPC) major, with a presence in the verticals of Power Transmission & Distribution, Railways, Civil, Urban Infrastructure, Oil & Gas Pipelines, Solar, Sma
GMR Group is a leading global infrastructure conglomerate with significant expertise in airports, energy, transportation, and urban infrastructure. GMR Airports is Asia’s largest private airport operator with the world’s 2nd largest passenger handling capacity (over 100 million annually). It opera
As North America’s largest equipment rental company, with 1500+ stores in the United States and Canada, we serve construction and industrial companies, utilities, municipalities, homeowners, and communities, with the goal of fulfilling customer needs and surpassing expectations. We go beyond equipm
.png)
Kiewit CyberSecurity News
November 19, 2025 09:00 PM
MVP: Jones Day's Daniel McMillan
Jones Day global construction group leader Daniel McMillan guided Kiewit to victory in a massive dispute over the construction of an LNG...
November 19, 2025 07:02 AM
UNO Launches Nebraska Cyber Matrix: Students Work With Local Firms to Combat Cyber Threats
The Nebraska Cyber Matrix pairs students with local businesses to fight real cybersecurity attacks, building home-grown talent with...
October 07, 2025 07:00 AM
'Everything is digital': UNO's Cyber Matrix aims to combat global threats with freshly trained workforce
The University of Nebraska Omaha is launching the Nebraska Cyber Matrix this month at the Peter Kiewit Institute to train students in...
September 16, 2025 07:00 AM
Android hacking up 29% in first half of 2025: 4 tips to stay safe - Arthur Goldstuck
Android cyber attacks are up 48% from just six months ago, reports Arthur Goldstuck, author of "The Hitchhiker's Guide to AI" and Founder of...
September 15, 2025 07:00 AM
How to stay safe on WhatsApp as impersonation scams surge
CapeTalk's Lester Kiewit speaks to Lucas Molefe, a cybersecurity expert. Listen below: Avoid scams coming through WhatsApp.
December 26, 2024 08:00 AM
Top 10 Tech Internships Offered in Omaha
Omaha's tech scene boasts top internships at companies like TD Ameritrade, Union Pacific, and Mutual of Omaha. These internships offer hands-on experience,...
December 26, 2024 08:00 AM
Ranking the Top 10 High-Paying Tech Jobs in Omaha
Explore high-paying tech jobs in Omaha, Nebraska, including software developer and information security analyst, with salaries and growth...
December 13, 2024 08:00 AM
Four IS&T Faculty Receive Weitz Innovation and Excellence Fund Awards
Scaling and UP-skilling the Nebraska Cyber Workforce through the NebraskaCYBER MATRIX: Machine Learning, Artificial Intelligence, and Threat...
February 13, 2019 08:00 AM
Girls team reach finals of UK spy agency competition
A TEAM of girls from The Queen's School in Chester has been revealed as national finalists for the CyberFirst Girls competition.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Kiewit CyberSecurity History Information
Official Website of Kiewit
The official website of Kiewit is http://kiewit.com.
Kiewit’s AI-Generated Cybersecurity Score
According to Rankiteo, Kiewit’s AI-generated cybersecurity score is 797, reflecting their Fair security posture.
How many security badges does Kiewit’ have ?
According to Rankiteo, Kiewit currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Kiewit have SOC 2 Type 1 certification ?
According to Rankiteo, Kiewit is not certified under SOC 2 Type 1.
Does Kiewit have SOC 2 Type 2 certification ?
According to Rankiteo, Kiewit does not hold a SOC 2 Type 2 certification.
Does Kiewit comply with GDPR ?
According to Rankiteo, Kiewit is not listed as GDPR compliant.
Does Kiewit have PCI DSS certification ?
According to Rankiteo, Kiewit does not currently maintain PCI DSS compliance.
Does Kiewit comply with HIPAA ?
According to Rankiteo, Kiewit is not compliant with HIPAA regulations.
Does Kiewit have ISO 27001 certification ?
According to Rankiteo,Kiewit is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Kiewit
Kiewit operates primarily in the Construction industry.
Number of Employees at Kiewit
Kiewit employs approximately 24,434 people worldwide.
Subsidiaries Owned by Kiewit
Kiewit presently has no subsidiaries across any sectors.
Kiewit’s LinkedIn Followers
Kiewit’s official LinkedIn profile has approximately 939,803 followers.
NAICS Classification of Kiewit
Kiewit is classified under the NAICS code 23, which corresponds to Construction.
Kiewit’s Presence on Crunchbase
No, Kiewit does not have a profile on Crunchbase.
Kiewit’s Presence on LinkedIn
Yes, Kiewit maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/kiewit.
Cybersecurity Incidents Involving Kiewit
As of November 27, 2025, Rankiteo reports that Kiewit has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
Kiewit has an estimated 38,722 peer or competitor companies worldwide.
Kiewit CyberSecurity History Information
How many cyber incidents has Kiewit faced ?
Total Incidents: According to Rankiteo, Kiewit has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at Kiewit ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
Angular is a development platform for building mobile and desktop web applications using TypeScript/JavaScript and other languages. Prior to versions 19.2.16, 20.3.14, and 21.0.1, there is a XSRF token leakage via protocol-relative URLs in angular HTTP clients. The vulnerability is a Credential Leak by App Logic that leads to the unauthorized disclosure of the Cross-Site Request Forgery (XSRF) token to an attacker-controlled domain. Angular's HttpClient has a built-in XSRF protection mechanism that works by checking if a request URL starts with a protocol (http:// or https://) to determine if it is cross-origin. If the URL starts with protocol-relative URL (//), it is incorrectly treated as a same-origin request, and the XSRF token is automatically added to the X-XSRF-TOKEN header. This issue has been patched in versions 19.2.16, 20.3.14, and 21.0.1. A workaround for this issue involves avoiding using protocol-relative URLs (URLs starting with //) in HttpClient requests. All backend communication URLs should be hardcoded as relative paths (starting with a single /) or fully qualified, trusted absolute URLs.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
- https://github.com/angular/angular/commit/0276479e7d0e280e0f8d26fa567d3b7aa97a516f
- https://github.com/angular/angular/commit/05fe6686a97fa0bcd3cf157805b3612033f975bc
- https://github.com/angular/angular/commit/3240d856d942727372a705252f7c8c115394a41e
- https://github.com/angular/angular/releases/tag/19.2.16
- https://github.com/angular/angular/releases/tag/20.3.14
- https://github.com/angular/angular/releases/tag/21.0.1
- https://github.com/angular/angular/security/advisories/GHSA-58c5-g7wp-6w37
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Uncontrolled Recursion vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft deep ASN.1 structures that trigger unbounded recursive parsing. This leads to a Denial-of-Service (DoS) via stack exhaustion when parsing untrusted DER inputs. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 8.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Forge (also called `node-forge`) is a native implementation of Transport Layer Security in JavaScript. An Integer Overflow vulnerability in node-forge versions 1.3.1 and below enables remote, unauthenticated attackers to craft ASN.1 structures containing OIDs with oversized arcs. These arcs may be decoded as smaller, trusted OIDs due to 32-bit bitwise truncation, enabling the bypass of downstream OID-based security decisions. This issue has been patched in version 1.3.2.
Risk Information
cvss4
Base: 6.3
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. Prior to versions 7.0.13 and 8.0.2, working with large buffers in Lua scripts can lead to a stack overflow. Users of Lua rules and output scripts may be affected when working with large buffers. This includes a rule passing a large buffer to a Lua script. This issue has been patched in versions 7.0.13 and 8.0.2. A workaround for this issue involves disabling Lua rules and output scripts, or making sure limits, such as stream.depth.reassembly and HTTP response body limits (response-body-limit), are set to less than half the stack size.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
Suricata is a network IDS, IPS and NSM engine developed by the OISF (Open Information Security Foundation) and the Suricata community. In versions from 8.0.0 to before 8.0.2, a NULL dereference can occur when the entropy keyword is used in conjunction with base64_data. This issue has been patched in version 8.0.2. A workaround involves disabling rules that use entropy in conjunction with base64_data.
Risk Information
cvss3
Base: 7.5
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=kiewit' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
