Comparison Overview

Texas Tech University - Critical Infrastructure Security Institute (CISI)

VS

CEA

Texas Tech University - Critical Infrastructure Security Institute (CISI)

2500 Broadway, None, Lubbock, Texas, US, 79401
Last Update: 2025-12-10
View Profile
Between 700 and 749
https://www.depts.ttu.edu/cisi/

Critical Infrastructure Security Institute (CISI), located on the Texas Tech University Innovation Campus, will become the world leader in integrating cyber and cyber-physical critical infrastructure security research through the establishment of a highly secure research facility for testing the real security and resilience of our nation’s critical infrastructure systems in furtherance of the homeland security mission. CISI is establishing a national academic/industry/government consortium that will apply real infrastructure design, threat intelligence, cyber analytics, and research capacity to the elucidation and remediation of critical infrastructure vulnerability. CISI is studying strategies to protect critical infrastructure among DHS CISA’s 16 critical sectors from both domestic and nation-state threats, resulting in policy analysis and formulation and a stronger, more resilient national infrastructure.

NAICS: 5417
NAICS Definition: Scientific Research and Development Services
Employees: 2
Subsidiaries: 0
12-month incidents
1
Known data breaches
0
Attack type number
1
View Profile

CEA

Bâtiment Le Ponant D, Paris, France, 75015, FR
Last Update: 2025-12-17
Between 750 and 799
http://www.cea.fr

The CEA is the French Alternative Energies and Atomic Energy Commission ("Commissariat à l'énergie atomique et aux énergies alternatives"​). It is a public body established in October 1945 by General de Gaulle. A leader in research, development and innovation, the CEA mission statement has two main objectives: To become the leading technological research organization in Europe and to ensure that the nuclear deterrent remains effective in the future. The CEA is active in four main areas: low-carbon energies, defense and security, information technologies and health technologies. In each of these fields, the CEA maintains a cross-disciplinary culture of engineers and researchers, building on the synergies between fundamental and technological research. The civilian programs of the CEA received 49% of their funding from the French government, and 30% from external sources (partner companies and the European Union). The CEA had a budget of 4,3 billion euros. The CEA is based in ten research centers in France, each specializing in specific fields. The laboratories are located in the Paris region, the Rhône-Alpes, the Rhône valley, the Provence-Alpes-Côte d'Azur region, Aquitaine, Central France and Burgundy. The CEA benefits from the strong regional identities of these laboratories and the partnerships forged with other research centers, local authorities and universities.

NAICS: 5417
NAICS Definition: Scientific Research and Development Services
Employees: 17,784
Subsidiaries: 1
12-month incidents
0
Known data breaches
0
Attack type number
0

Compliance Badges Comparison

Security & Compliance Standards Overview

https://images.rankiteo.com/companyimages/ttu-cisi.jpeg
Texas Tech University - Critical Infrastructure Security Institute (CISI)
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
https://images.rankiteo.com/companyimages/cea.jpeg
CEA
ISO 27001
ISO 27001 certification not verified
Not verified
SOC2 Type 1
SOC2 Type 1 certification not verified
Not verified
SOC2 Type 2
SOC2 Type 2 certification not verified
Not verified
GDPR
GDPR certification not verified
Not verified
PCI DSS
PCI DSS certification not verified
Not verified
HIPAA
HIPAA certification not verified
Not verified
Compliance Summary
Texas Tech University - Critical Infrastructure Security Institute (CISI)
100%
Compliance Rate
0/4 Standards Verified
CEA
0%
Compliance Rate
0/4 Standards Verified

Benchmark & Cyber Underwriting Signals

Incidents vs Research Services Industry Average (This Year)

Texas Tech University - Critical Infrastructure Security Institute (CISI) has 69.49% more incidents than the average of same-industry companies with at least one recorded incident.

Incidents vs Research Services Industry Average (This Year)

No incidents recorded for CEA in 2025.

Incident History — Texas Tech University - Critical Infrastructure Security Institute (CISI) (X = Date, Y = Severity)

Texas Tech University - Critical Infrastructure Security Institute (CISI) cyber incidents detection timeline including parent company and subsidiaries

Incident History — CEA (X = Date, Y = Severity)

CEA cyber incidents detection timeline including parent company and subsidiaries

Notable Incidents

Last 3 Security & Risk Events by Company

https://images.rankiteo.com/companyimages/ttu-cisi.jpeg
Texas Tech University - Critical Infrastructure Security Institute (CISI)
Incidents

Date Detected: 12/2025
Type:Cyber Attack
Attack Vector: DDoSia (Custom DDoS Tool), Telegram Coordination, Distributed Denial-of-Service-for-Hire Services
Motivation: State-Sanctioned Cyber Warfare, Disruption of Critical Infrastructure, Political Influence
Blog: Blog
https://images.rankiteo.com/companyimages/cea.jpeg
CEA
Incidents

No Incident

FAQ

CEA company demonstrates a stronger AI Cybersecurity Score compared to Texas Tech University - Critical Infrastructure Security Institute (CISI) company, reflecting its advanced cybersecurity posture governance and monitoring frameworks.

Texas Tech University - Critical Infrastructure Security Institute (CISI) company has historically faced a number of disclosed cyber incidents, whereas CEA company has not reported any.

In the current year, Texas Tech University - Critical Infrastructure Security Institute (CISI) company has reported more cyber incidents than CEA company.

Neither CEA company nor Texas Tech University - Critical Infrastructure Security Institute (CISI) company has reported experiencing a ransomware attack publicly.

Neither CEA company nor Texas Tech University - Critical Infrastructure Security Institute (CISI) company has reported experiencing a data breach publicly.

Texas Tech University - Critical Infrastructure Security Institute (CISI) company has reported targeted cyberattacks, while CEA company has not reported such incidents publicly.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) company nor CEA company has reported experiencing or disclosing vulnerabilities publicly.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds any compliance certifications.

Neither company holds any compliance certifications.

CEA company has more subsidiaries worldwide compared to Texas Tech University - Critical Infrastructure Security Institute (CISI) company.

CEA company employs more people globally than Texas Tech University - Critical Infrastructure Security Institute (CISI) company, reflecting its scale as a Research Services.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds SOC 2 Type 1 certification.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds SOC 2 Type 2 certification.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds ISO 27001 certification.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds PCI DSS certification.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds HIPAA certification.

Neither Texas Tech University - Critical Infrastructure Security Institute (CISI) nor CEA holds GDPR certification.

Latest Global CVEs (Not Company-Specific)

Description

Hitachi Vantara Pentaho Data Integration and Analytics Community Dashboard Framework prior to versions 10.2.0.4, including 9.3.0.x and 8.3.x display the full server stack trace when encountering an error within the GetCdfResource servlet.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
References
Description

Pentaho Data Integration and Analytics Community Dashboard Editor plugin versions before 10.2.0.4, including 9.3.0.x and 8.3.x, deserialize untrusted JSON data without constraining the parser to approved classes and methods.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss3
Base: 8.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
References
Description

A security flaw has been discovered in CTCMS Content Management System up to 2.1.2. The impacted element is an unknown function in the library /ctcms/libs/Ct_Config.php of the component Backend System Configuration Module. The manipulation of the argument Cj_Add/Cj_Edit results in code injection. The attack can be executed remotely. The exploit has been released to the public and may be exploited.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

A vulnerability was identified in CTCMS Content Management System up to 2.1.2. The affected element is the function Save of the file /ctcms/libs/Ct_App.php of the component Backend App Configuration Module. The manipulation of the argument CT_App_Paytype leads to code injection. Remote exploitation of the attack is possible. The exploit is publicly available and might be used.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss2
Base: 5.8
Severity: LOW
AV:N/AC:L/Au:M/C:P/I:P/A:P
cvss3
Base: 4.7
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 5.1
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References
Description

Weblate is a web based localization tool. In versions prior to 5.15, it was possible to accept an invitation opened by a different user. Version 5.15. contains a patch. As a workaround, avoid leaving one's Weblate sessions with an invitation opened unattended.

Published
Date
2025-12-15
Updated
Date
2025-12-15
Risk Information
cvss4
Base: 1.0
Severity: HIGH
CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
References