How to Deliver OT Cyber Assessments with ACSSA (April 29, 2026)
Join Steve Mustard, Au2mation & ISA Fellow; Deniz Kaya, Perseus Information Security Consulting; and Michael Twumasi, Schneider Electric as they discuss the Automation Control System Site Assessment (ACSSA) methodology. Learn the benefits of how it can be used for structured, repeatable OT evaluations using ISA/IEC 62443 2-1, 2-4, 3-2, and 3-3.
In addition to providing an overview of ACSSA, this panel discussion will branch out into a variety of ACSSA topics, including the new ISA IC49 ACSSA Evaluator training; how things may vary on the road to ACSSA certification based on using the methodology internally; working with consultants, an IB or CB; why using this methodology is a benefit even if certification is not your end game; how to prepare for the certification process, and much more. Time has been built in for Q&A.
The Automation Control System Site Assessment (ACSSA) program offers asset owners a formal method for evaluating the cybersecurity posture of facilities, assessing the organizational maturity for the operator as well as service providers and the technical security controls for the system under evaluation. This offers significant improvements and standardization compared to previous assessment approaches, but many don't know how best to start preparing.
KEY TAKEAWAYS:
✔️ Learn about the Automation Control System Site Assessment (ACSSA) Program
✔️ The benefits of using ACSSA whether a formal certificate is needed or not
✔️ Asset owners will receive practical guidance on preparing for ACSSA
✔️ Consultants, IBs and CBs will learn how to get started
Date: Wednesday, 29 April 2026
Time: 11:00 - 12:00 EDT U.S. (New York time)
Price: Free
Deniz Kaya
Deniz Kaya, CEO, Perseus Information Security Consulting has a strong background in cybersecurity, having worked in various roles. Deniz holds a Master of Science in Cybersecurity and Information Assurance from Western Governors University.
Deniz has a deep commitment to advancing cybersecurity across critical sectors. His skills include being a TISAX Lead Auditor, an ISA/IEC 62443 Cybersecurity Expert, ISO 27701 Lead Auditor, and SWIFT CSP Accessor. Deniz has also completed the ISA IC49 ACSSA for Evaluators certification class.
Michael Twumasi
Michael Twumasi, P.Eng. MSc, Global Managing Cybersecurity Consultant, Schneider Electric is a seasoned cybersecurity leader with over 30 years of experience in industrial automation, electrical engineering, and cyber risk management. At SE he drives strategic cybersecurity consulting engagements with global customers across different market verticals including critical infrastructure sectors.
Michael holds a Professional Engineer (P.Eng.) license in Alberta Canada and advanced engineering degrees from Aalborg University (Denmark), NTNU (Norway), and the University of Science & Technology (Ghana). He is certified in CISSP, CCSP, IEC 62443, and CEH, and has led cybersecurity operations and consultancy across N. America, Europe and APAC.
Steve Mustard
Steve Mustard, PE, CAP, GISP, CMCP, President of Au2mation, ISA Fellow, and ISA Instructor, including IC49 has over 35 years of experience in the automation industry. He has developed embedded software and hardware for military applications and created products for industrial automation and control systems. Currently, much of his work focuses on assessing the cybersecurity readiness of organizations in critical infrastructure.
In addition to being a former ISA President, Steve holds multiple certifications and professional engineering licenses. Including being a licensed Professional Engineer (PE), an ISA Certified Automation Professional (CAP), a UK-registered Chartered Engineer (CEng), a Global Industrial Cyber Security Professional (GICSP), a Certified Mission Critical Professional (CMCP) and more!