ISA/IEC 62443 IACS Security Assurance (ACSSA) Program
This first-of-its-kind program to demonstrate operating site compliance with the international standard ISA/IEC 62443
The ISA Security Compliance Institute (ISCI), has completed all of the requirements for its conformity assessment scheme for automation systems deployed at operating sites.
Check back here for new updates weekly as requirements, training and documentation are shared for ACSSA and ISA Training class IC49 (ACSSA Evaluator) as we move into Spring.
Interested in being an ACSSA Consultant, Inspection Body (IB) or Certification Body (CB)? Reach out to mritterskamp@isa.org to schedule a time to learn more about requirements for each.
View the Latest Resources on ACSSA
How ACSSA Benefits Automation
Listen in as Steve Mustard discusses the benefits of ACSSA and how it contributes to the advancement of industrial automation.
Watch the VideoIt's Coming! Your ACSSA 2026 Roadmap -- A Panel Discussion
In this program, you will hear from key ISASecure members on the upcoming ACSSA implementation. (12/2025)
View the WebinarAll Aboard the ACSSA, 1st Stop - Risk Assessment
In this program, you are introduced to the ACSSA cybersecurity risk assessment process and how a risk assessment can be used to best prepare for an ACSSA evaluation.
View the WebinarACSSA: Achieving Security Assurance for Automation and Control Systems
This white paper presents a practical, repeatable ACS security assurance process for operational infrastructure, helping asset owners mitigate cyber risks, protect critical processes, and demonstrate compliance to regulators and insurers.
Download the WhitepaperACSSA Implementation Update
A new update on ISASecure Automation & Control System Security Assurance (ACSSA) assessment and certification scheme.
View the WebinarWhy OT Cybersecurity Can’t Be Solved with IT Tools: A Site-Level Perspective
Alan Raveling of Interstates examines the impact of applying IT tools in OT environments and shares strategies for integrating OT techniques into IT-managed systems using real-world examples.
View the WebinarACSSA Industry Panel Update
Hear from program managers, directors, and SMEs actually writing the standard to hear firsthand about what's to come.
View the WebinarElevate OT Cybersecurity with the ISA/IEC 62443 Based Site Assessment
Based on the World’s Leading OT Cybersecurity Standard
Based on the world’s only consensus-based automation and control systems cybersecurity standards — ISA/IEC 62443 — the OT cybersecurity site assessment scheme will apply to all types of automation and control systems in industries ranging from traditional process industries to critical infrastructure such as oil and gas, chemicals, electrical power plants and water/wastewater.
The Challenge: Operating Sites are Vulnerable
Suppliers have broadly adopted the leading international standard for OT cybersecurity, ISA/IEC 62443, as well as its certification scheme, ISASecure, for commercial off-the-shelf (COTS) automation and control system products and suppliers’ security development practices. However, asset owners and plant managers have yet to coalesce around a single cybersecurity assessment scheme for OT deployed at operating sites, relying instead upon a patchwork of third-party solutions that may not promote industrial control system (ICS) security best practices, leaving operating sites vulnerable.
Unique Solution for Operating Site Assessment
The ISASecure site assessment scheme fills a very important gap in the OT cybersecurity landscape – the operating site itself. There is no other standards-based program like this available today, and we anticipate it will become the global standard used by operating sites, certification bodies, internal auditors, and public policymakers.
Find out more about becoming an ISASecure member
Companies who are interested in supporting and promoting this program are invited to participate by becoming an ISASecure member.
Take a moment to fill out the form below, now!
