SCE
Company Details
Linkedin ID:
sce
Website:
Employees number:
12,464
Number of followers:
148,734
NAICS:
22
Industry Type:
Homepage:
sce.com
IP Addresses:
0
Company ID:
SOU_2890907
Scan Status:
In-progress
Internal validation & live display
Multiple badges & continuous verification
Faster underwriting decisions
Southern California Edison (SCE) Vendor Cyber Rating & Cyber Score
sce.comAs one of the nation’s largest electric utilities, we’re bringing more clean and renewable sources of energy to Southern California. From energy storage to transportation electrification, our employees are working on innovative projects that will help cut emissions and greenhouse gases to provide cleaner air for everyone. We have diverse teams, made up of inventors, doers and problem solvers. The people here at SCE don't just keep the lights on. The mission is so much bigger. We are fueling the kind of innovation that is changing an entire industry, and quite possibly the planet. Follow us on LinkedIn and visit www.edisoncareers.com to learn more about who we are and how we’re working together to create a better tomorrow.
Southern California Edison (SCE) A.I CyberSecurity Scoring
SCE Risk Score (AI oriented)Between 750 and 799
SCE
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
SCE Global Score (TPRM)XXXX
SCE
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
SCE Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Southern California Edison Co.
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The California Office of the Attorney General reported a data breach involving Southern California Edison Co. on December 28, 2022. The breach occurred on November 28, 2022, due to an inadvertent disclosure of personal information, affecting at least one individual. The compromised information included names, social security numbers, and company contributions to health accounts. This incident highlights the vulnerability of personal data and the importance of robust security measures to prevent such breaches.
SCE Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for SCE
Incidents vs Utilities Industry Average (This Year)
No incidents recorded for Southern California Edison (SCE) in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Southern California Edison (SCE) in 2026.
Incident Types SCE vs Utilities Industry Avg (This Year)
No incidents recorded for Southern California Edison (SCE) in 2026.
Incident History — SCE (X = Date, Y = Severity)
SCE cyber incidents detection timeline including parent company and subsidiaries
SCE Company Subsidiaries
As one of the nation’s largest electric utilities, we’re bringing more clean and renewable sources of energy to Southern California. From energy storage to transportation electrification, our employees are working on innovative projects that will help cut emissions and greenhouse gases to provide cleaner air for everyone. We have diverse teams, made up of inventors, doers and problem solvers. The people here at SCE don't just keep the lights on. The mission is so much bigger. We are fueling the kind of innovation that is changing an entire industry, and quite possibly the planet. Follow us on LinkedIn and visit www.edisoncareers.com to learn more about who we are and how we’re working together to create a better tomorrow.
Loading...
SCE Similar Companies
Dominion Energy (NYSE: D), headquartered in Richmond, Va., provides regulated electricity service to 3.6 million homes and businesses in Virginia, North Carolina, and South Carolina, and regulated natural gas service to 500,000 customers in South Carolina. The company is one of the nation’s leading
O Grupo Energisa tem na distribuição de energia elétrica a principal base de seu negócio. Com cinco distribuidoras no Brasil, das quais três na região Nordeste (Energisa Sergipe - Distribuidora de Energia S/A nova denominação de Energipe, no Estado de Sergipe, Energisa Paraíba - Distribuidora de Ene
Company profile Eskom Holdings generates, transports and distributes approximately 95% of South Africa’s electricity – making up 60% of the total electricity consumed on the African continent. Eskom is the world’s eleventh-largest power utility in terms of generating capacity, ranks ninth in term
Hitachi Energy is a global technology leader in electrification, powering a sustainable energy future with innovative power grid technologies with digital at the core. Over three billion people depend on our technologies to power their daily lives. With over a century in pioneering mission-critical
Centrica is an international energy services and solutions company, founded on a 200-year heritage of serving customers in homes and businesses. We supply energy and services to over 10 million customers, mainly in the UK and Ireland, through brands such as British Gas, Bord Gáis Energy and Centri
A leading energy provider, dedicated to excellence. We make energy work better for our customers, helping them thrive every day. That means always raising the bar - delivering better service and providing more reliable, resilient and sustainable energy to the eight states we serve: Minnesota, Colora
Framatome
Framatome is an international leader in nuclear energy recognized for its innovative, digital and value added solutions for the global nuclear fleet. With worldwide expertise and a proven track record for reliability and performance, the company designs, services and installs components, fuel, and i
Constellation
Constellation Energy Corporation (Nasdaq: CEG), a Fortune 200 company headquartered in Baltimore, is the nation’s largest producer of reliable, emissions-free energy and a leading energy supplier to businesses, homes and public sector customers nationwide, including three-fourths of Fortune 100 comp
American Electric Power
Our team at American Electric Power is committed to improving our customers' lives with reliable, affordable power. We are investing $54 billion from 2025 through 2029 to enhance service for customers and support the growing energy needs of our communities. Our nearly 16,000 employees operate and ma
.png)
SCE CyberSecurity News
February 19, 2026 08:00 AM
California farms get new help cutting power bills under ICF-SCE deal
Multi-million-dollar contract amendment triples ICF's role in SCE's Agricultural Energy Efficiency Program, helping farms and dairies cut...
January 07, 2026 08:00 AM
One Year Later, Eaton Fire Victims Still Await Accountability and Compensation
On the anniversary of one of California's deadliest wildfires, ongoing litigation and emerging evidence underscore questions of...
November 10, 2025 08:00 AM
From Military Missions to Cybersecurity Leadership
Before Kaleb Flem ever helped safeguard the technology behind Southern California Edison's power grid, he was immersed in a different kind...
November 06, 2025 08:00 AM
Edison Scholars Program Accepting Applications
Media Relations - link opens in new window: (626) 302-2255. [email protected]. ROSEMEAD, Calif., Nov. 6, 2025 — High school seniors with dreams...
October 28, 2025 07:00 AM
Edison International Reports Third Quarter 2025 Results
Edison International (NYSE: EIX) today reported third-quarter net income of $832 million, or $2.16 per share, compared to net income of $516...
May 16, 2025 07:00 AM
Southern California Edison submits $6.2 billion wildfire mitigation plan to regulator
Southern California Edison (SCE), a unit of utility Edison International , said on Friday it had submitted a three-year wildfire mitigation...
April 14, 2025 07:00 AM
Edison to move power lines underground in wildfire burn areas
SCE's preliminary plan calls for moving underground 130 circuit miles in areas of high risk for fire in the Eaton and Palisades burn zones.
April 11, 2025 07:00 AM
Southern California Edison Provides Rebuilding Plan for Electric Distribution in Altadena and Malibu
SCE today provided an initial comprehensive plan to rebuild the impacted electrical distribution infrastructure in the Altadena and Malibu...
February 27, 2025 08:00 AM
Edison International Reports Fourth-Quarter and Full-Year 2024 Results
Edison International (NYSE: EIX) today reported fourth-quarter net income of $340 million, or $0.88 per share, compared to net income of $378 million, or $0.99...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
SCE CyberSecurity History Information
Official Website of Southern California Edison (SCE)
The official website of Southern California Edison (SCE) is http://www.sce.com/.
Southern California Edison (SCE)’s AI-Generated Cybersecurity Score
According to Rankiteo, Southern California Edison (SCE)’s AI-generated cybersecurity score is 754, reflecting their Fair security posture.
How many security badges does Southern California Edison (SCE)’ have ?
According to Rankiteo, Southern California Edison (SCE) currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Southern California Edison (SCE) been affected by any supply chain cyber incidents ?
According to Rankiteo, Southern California Edison (SCE) has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Southern California Edison (SCE) have SOC 2 Type 1 certification ?
According to Rankiteo, Southern California Edison (SCE) is not certified under SOC 2 Type 1.
Does Southern California Edison (SCE) have SOC 2 Type 2 certification ?
According to Rankiteo, Southern California Edison (SCE) does not hold a SOC 2 Type 2 certification.
Does Southern California Edison (SCE) comply with GDPR ?
According to Rankiteo, Southern California Edison (SCE) is not listed as GDPR compliant.
Does Southern California Edison (SCE) have PCI DSS certification ?
According to Rankiteo, Southern California Edison (SCE) does not currently maintain PCI DSS compliance.
Does Southern California Edison (SCE) comply with HIPAA ?
According to Rankiteo, Southern California Edison (SCE) is not compliant with HIPAA regulations.
Does Southern California Edison (SCE) have ISO 27001 certification ?
According to Rankiteo,Southern California Edison (SCE) is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Southern California Edison (SCE)
Southern California Edison (SCE) operates primarily in the Utilities industry.
Number of Employees at Southern California Edison (SCE)
Southern California Edison (SCE) employs approximately 12,464 people worldwide.
Subsidiaries Owned by Southern California Edison (SCE)
Southern California Edison (SCE) presently has no subsidiaries across any sectors.
Southern California Edison (SCE)’s LinkedIn Followers
Southern California Edison (SCE)’s official LinkedIn profile has approximately 148,734 followers.
NAICS Classification of Southern California Edison (SCE)
Southern California Edison (SCE) is classified under the NAICS code 22, which corresponds to Utilities.
Southern California Edison (SCE)’s Presence on Crunchbase
Yes, Southern California Edison (SCE) has an official profile on Crunchbase, which can be accessed here: https://www.crunchbase.com/organization/southern-california-edison.
Southern California Edison (SCE)’s Presence on LinkedIn
Yes, Southern California Edison (SCE) maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/sce.
Cybersecurity Incidents Involving Southern California Edison (SCE)
As of April 01, 2026, Rankiteo reports that Southern California Edison (SCE) has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Southern California Edison (SCE) has an estimated 4,343 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Southern California Edison (SCE) ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Southern California Edison Co. Data Breach
Description: The California Office of the Attorney General reported a data breach involving Southern California Edison Co. on December 28, 2022. The breach occurred on November 28, 2022, due to an inadvertent disclosure of personal information, affecting at least one individual, with information compromised including names, social security numbers, and company contributions to health accounts.
Date Detected: 2022-11-28
Date Publicly Disclosed: 2022-12-28
Type: Data Breach
Attack Vector: Inadvertent Disclosure
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach SCE310072925
Data Compromised: Names, Social security numbers, Company contributions to health accounts
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers, Company Contributions To Health Accounts and .
Which entities were affected by each incident ?
Incident : Data Breach SCE310072925
Entity Name: Southern California Edison Co.
Entity Type: Company
Industry: Energy
Location: California
Customers Affected: At least one individual
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach SCE310072925
Type of Data Compromised: Names, Social security numbers, Company contributions to health accounts
Number of Records Exposed: At least one individual
Sensitivity of Data: High
Personally Identifiable Information: namessocial security numbers
References
Where can I find more information about each incident ?
Incident : Data Breach SCE310072925
Source: California Office of the Attorney General
Date Accessed: 2022-12-28
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: California Office of the Attorney GeneralDate Accessed: 2022-12-28.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2022-11-28.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-12-28.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, social security numbers, company contributions to health accounts and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were social security numbers, names and company contributions to health accounts.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is California Office of the Attorney General.
.png)
Latest Global CVEs (Not Company-Specific)
Description
A security flaw has been discovered in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /manage_user.php of the component Parameter Handler. Performing a manipulation of the argument ID results in sql injection. The attack is possible to be carried out remotely. The exploit has been released to the public and may be used for attacks.
Risk Information
cvss2
Base: 7.5
Severity: LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
cvss3
Base: 7.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 6.9
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was identified in Axiomatic Bento4 up to 1.6.0-641. Affected is the function AP4_BitReader::SkipBits of the file Ap4Dac4Atom.cpp of the component DSI v1 Parser. Such manipulation of the argument n_presentations leads to heap-based buffer overflow. The attack needs to be performed locally. The exploit is publicly available and might be used. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
A vulnerability was determined in Axiomatic Bento4 up to 1.6.0-641. This impacts the function AP4_BitReader::ReadCache of the file Ap4Dac4Atom.cpp of the component MP4 File Parser. This manipulation causes heap-based buffer overflow. The attack needs to be launched locally. The exploit has been publicly disclosed and may be utilized. The project was informed of the problem early through an issue report but has not responded yet.
Risk Information
cvss2
Base: 4.3
Severity: LOW
AV:L/AC:L/Au:S/C:P/I:P/A:P
cvss3
Base: 5.3
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
cvss4
Base: 4.8
Severity: LOW
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a heap-buffer-overflow (HBO) in icAnsiToUtf8() in the XML conversion path. The issue is triggered by a crafted ICC profile which causes icAnsiToUtf8(std::string&, char const*) to treat an input buffer as a C-string and call operations that rely on strlen()/null-termination. AddressSanitizer reports an out-of-bounds READ of size 115 past a 114-byte heap allocation, with the failure observed while running the iccToXml tool. This issue has been patched in version 2.3.1.6.
Risk Information
cvss3
Base: 6.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Description
iccDEV provides a set of libraries and tools for working with ICC color management profiles. Prior to version 2.3.1.6, there is a stack-buffer-overflow (SBO) in CIccTagFixedNum<>::GetValues() and a related bug chain. The primary crash is an AddressSanitizer-reported WRITE of size 4 that overflows a 4-byte stack variable (rv) via the call chain CIccTagFixedNum::GetValues() -> CIccTagStruct::GetElemNumberValue(). This issue has been patched in version 2.3.1.6.
Risk Information
cvss3
Base: 6.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
References
- https://github.com/InternationalColorConsortium/iccDEV/issues/696
- https://github.com/InternationalColorConsortium/iccDEV/issues/697
- https://github.com/InternationalColorConsortium/iccDEV/issues/698
- https://github.com/InternationalColorConsortium/iccDEV/issues/703
- https://github.com/InternationalColorConsortium/iccDEV/pull/739
- https://github.com/InternationalColorConsortium/iccDEV/security/advisories/GHSA-983c-rgh5-4982
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=sce' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
