The growing threat of maritime cyber incidents, speed of propagation and impact make it necessary to define and implement good cyber incident management practices that include specific processes, resources and procedures.
You are browsing archives for
Category: Cybersecurity
IMO Cyber risk guide and cybersecurity best practices
Introduction IMO cyber risk guide The Maritime Safety Committee of the IMO International Maritime Organization adopted in May 2016 the cyber risk guide “ Interim guidelines on maritime cyber risk management”. With the publication of this voluntary guide, IMO formally recognizes the existence of cyber security risks in the maritime sector understanding as such those […]
BIMCO Cybersecurity onboard ships
Recently, the Baltic and International Maritime Council BIMCO published “The guidelines on Cyber Security onboard ships”. (Ref.1) In this article, I present a summary of some of the main concepts in the BIMCO guide along with my comments and interpretation. Since the article presents my interpretation of the guide based on my experience in cybersecurity, […]
Cybersecurity and the Marine Transportation System
Cyber related vulnerabilities are a growing portion of the total risk exposure facing the Marine Transportation System (MTS). The Cybersecurity Framework CSF is intended to enable organizations regardless of sector, size, degree of cybersecurity risk, or cybersecurity sophistication to apply the principles and best practices of risk management for improving the security and resilience of critical infrastructure.
Vessel Cybersecurity Risk Analysis
In this article, I introduce vessel cybersecurity risk analysis and show an example of its application to the Information and Communications Technology ICT assets in the Integrated Bridge System of a vessel. First, I present some information security concepts and a methodology to develop vessel cybersecurity risk analysis. Then, I show the application of the […]
Maritime cybersecurity using ISPS and ISM codes
In this article I present some ideas to incorporate cybersecurity policies, procedures and controls in vessel operations.
First, I make a brief description of the IMO security ISPS and safety ISM codes. Then, I indicate how cybersecurity could be incorporated in these codes.
Maritime Cybersecurity in Europe
The maritime sector is critical for the European society. In 2010 within Europe 52% of the goods traffic was carried by maritime transport. Maritime activity increasingly relies on Information Communication and Technology (ICT) in order to optimize its operations. ICT is increasingly used to enable essential maritime operations, from navigation to propulsion, from freight management […]
Maritime Cybersecurity in Spain
Navigation systems and control of ships are increasingly dependent on information systems and mission-critical industrial control systems . Spain ‘s government approved the strategy of national maritime cybersecurity in 2013 . This strategy states the following in his line of action 5 on improving cyber security in the maritime field : “The essential characteristic of […]