2025 Year In Review
With the ISA Security Compliance Institute (ISCI) 2025 now complete, we look back on a standout year of accelerating growth, an expanded certification portfolio and deeper strategic partnerships worldwide.
ACSSA: A Unified OT Site Cyber Assessment
The ISCI Technical Committee was busy throughout 2025 working on the upcoming IAC Security Assurance (ACSSA) program. The member-driven committee finalized work and sent ACSSA to the ISCI Board in late fall 2025 for approval. In 2025, ISASecure conducted multiple webinars on the topic. To view the recorded lectures, visit ISASecure® Site Assessment Program - Partner with Us.
ACSSA will provide asset owners and plant managers with a single cybersecurity assessment scheme for OT deployed at operating sites, eliminating a patchwork of third-party solutions that left many operating sites vulnerable when it rolls out in February 2026.
A three-day, members-only pilot training course will be offered in late January 2026. Based on the depth of the assessment, which includes requirements from ISA/IEC 62443 parts 2-1, 2-3, 2-4, 3-2 and 3-3, attendees will earn a new certification/badge upon successfully passing a post-training test. After the pilot course, open enrollment begins for those interested in ACSSA. The course is ISASecure ACSSA® for Evaluators (IC49).
In the first quarter of 2026, look for rollout news, training opportunities and content on the Inspection Body (IB) path, Certification Body (CB) path and the Consultant path.
Strengthening OT Cybersecurity
Strengthening OT Cybersecurity Procurement
In 2025 ISASecure continued its efforts to promote the value of integrating ISASecure into Supplier Procurement Specifications, with ExxonMobil, Chevron, Interstates and Securing Things participating in a panel discussion in June.
Members can download the drafted Procurement Language and modify it for their use, directly from the ISASecure Document Library.
We recently reconnected with M. Yousuf Faisal from Securing Things, as he participated in this summer’s panel discussion. Yousuf created a great additional video resource on the importance of a strong OT Procurement Process.
It’s a great session from a fellow ISASecure member that expands on these 5 questions.
- Typical challenges & hurdles in OT cybersecurity procurement
- Foundational changes and prerequisites before adoption
- Impact on IT vs OT risk management alignment
- How to verify vendors meet cybersecurity requirements
- Ensuring consistency in specifications, purchasing decisions and agreements
UL Solutions joins the ISASecure accredited certification body network
ISASecure certifications are conducted by accredited Certification Bodies (CBs). All ISASecure CB’s are independently accredited to ISASecure accreditation requirements, the ISO 17065 standard for product certifiers, and the ISO 17025 standard for lab operations. In 2025, UL Solutions, a global provider, became ISASecure’s newest Certification Body to obtain accreditation for conducting ISASecure SDLA, CSA, SSA and ICSA certifications. UL Solutions was ‘born’ in 1894 by founder, William Henry Merrill, Jr. an MIT graduate and introduced its first Standard for Safety, titled “Tin Clad Fire Doors.” UL Solutions joined other ISASecure CB's, BYHON, CSSC, Exida, FM Approvals, TÜV SÜD and TÜV Rheinland. To find out more about each of ISASecure’s CB’s visit ISASecure® Labs - Get Certified with Accredited Testing Standards.
From Whitepaper to Webinar - UTC Deepens Engagement with ISASecure
In 2025, the Utilities Technology Council (UTC) joined ISASecure. This followed the collaboration with ISA Global Cybersecurity Alliance (ISAGCA) on a whitepaper, North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) and ISA/IEC 62443 Comparative Analysis. Additionally, UTC participated in a “Whitepaper Review” NERC CIP & ISA/IEC 62443 Comparative Analysis” webinar in April.
Welcoming our 2025 New Members
.png?width=9980&height=2650&name=Landscape%20-%20NCSA%20LOGO%20(002).png)
