The growing threat of maritime cyber incidents, speed of propagation and impact make it necessary to define and implement good cyber incident management practices that include specific processes, resources and procedures.
Introduction IMO cyber risk guide The Maritime Safety Committee of the IMO International Maritime Organization adopted in May 2016 the cyber risk guide “ Interim guidelines on maritime cyber risk management”. With the publication of this voluntary guide, IMO formally recognizes the existence of cyber security risks in the maritime sector understanding as such those […]
Recently, the Baltic and International Maritime Council BIMCO published “The guidelines on Cyber Security onboard ships”. (Ref.1) In this article, I present a summary of some of the main concepts in the BIMCO guide along with my comments and interpretation. Since the article presents my interpretation of the guide based on my experience in cybersecurity, […]
Cyber related vulnerabilities are a growing portion of the total risk exposure facing the Marine Transportation System (MTS). The Cybersecurity Framework CSF is intended to enable organizations regardless of sector, size, degree of cybersecurity risk, or cybersecurity sophistication to apply the principles and best practices of risk management for improving the security and resilience of critical infrastructure.
In this article, I introduce vessel cybersecurity risk analysis and show an example of its application to the Information and Communications Technology ICT assets in the Integrated Bridge System of a vessel. First, I present some information security concepts and a methodology to develop vessel cybersecurity risk analysis. Then, I show the application of the […]
In this article I present some ideas to incorporate cybersecurity policies, procedures and controls in vessel operations.
First, I make a brief description of the IMO security ISPS and safety ISM codes. Then, I indicate how cybersecurity could be incorporated in these codes.
The International Maritime Bureau (IMB) has issued a warning about the growing threat of cyberattacks against shipping industry and indicates that the maritime sector could become the focus of attacks from cyber-pirates. In a statement on its website IMB indicates that recent events have shown that the management systems of freight traffic should be strengthened […]
The maritime sector is critical for the European society. In 2010 within Europe 52% of the goods traffic was carried by maritime transport. Maritime activity increasingly relies on Information Communication and Technology (ICT) in order to optimize its operations. ICT is increasingly used to enable essential maritime operations, from navigation to propulsion, from freight management […]
Navigation systems and control of ships are increasingly dependent on information systems and mission-critical industrial control systems . Spain ‘s government approved the strategy of national maritime cybersecurity in 2013 . This strategy states the following in his line of action 5 on improving cyber security in the maritime field : “The essential characteristic of […]