The world is changing, and with it so is technology. Vessels are progressively using systems relied on digitization, integration and automation. As a result of these, cyber security threats are not only increasing, but they are becoming a part of maritime daily business.
In order to respond to the increased cyber threat and avoid the consequences of not being prepared, international shipping organizations are developing guidelines, aiming to assist companies develop resilient methods and procedures for cyber security onboard ships.
Therefore, it is important all industry’s stakeholders to understand the threat landscape, consider the given guidelines and comply with the upcoming legislation in order to be fully prepared to address the associated challenges.
|Date||Publsiher||Name of Publication||Information|
|2012||ISO||ISO 27032:2012||The standard covers the baseline security practices for stakeholders in the Cyberspace|
|2016/02||BIMCO, CLIA, ICS, INTERCARGO and INTERTANKO||Guidelines on Cyber Security onboard ships (1st Edition)||The guidelines introduce a 6-step cyber security awareness framework to lower cyber security risks|
|2016/02||ABS||The application of Cyber Security principles to marine and offshore operations||Best practices for cyber security to marine and offshore communities, applicable to ships, platforms, and support facilities|
|2016/06||IMO (MSC96)||MSC.1/Circ. 1526||Interim Guidelines on Maritime Cyber Risk Management|
|2016/06||North P&I Club||Cyber Risks in Shipping||A loss prevention briefing showing examples of how vulnerable are various vessel systems|
|2016/06||DNV GL||Cyber Security Resilience Management||A Recommended Practice on how to apply ISO/IEC-27001 and ISA-99/IEC-62443 standards|
|2017/01||USCG||CG-5P Policy Letter 08-16||‘’Reporting Suspicious Activity and Breaches of Security” outlines the criteria for both suspicious activity and breaches of security and covers the reporting requirements|
|2017/01||Steamship Mutual||‘’Cyber Security: Smart, Safe Shipping” DVD||The DVD received the 2018 SMART4SEA Cyber Security Award for promoting awareness of cyber risks at sea featuring advice on strategies that ought to be adopted|
|2017/03||Lloyd’s Register||Cyber Security program||The program is based on a flexible and sustainable model, to provide clarity and help companies to develop their cyber security strategy|
|2017/04||OCIMF||TMSA 3||For the first time, TMSA introduced maritime security as Element 13 including cyber security.|
|2017/06||IMO (MSC 98)||MSC.428(98)||An approved SMS should take into account cyber risk management in accordance with the objectives and functional requirements of the ISM Code|
|2017/06||Bureau Veritas||Cyber Security Guidelines for Software Development & Assessment||The guide emphasizes a set of security objectives addressed to software developers and highlights good practices to be implemented in order to manage the security of software systems|
|2017/07||IMO||MSC-FAL.1/Circ.3||The guidelines refer to ship owners as guidance for cyber risk management and remain non-compulsory|
|2017/07||BIMCO and other Associations||The Guidelines on Cyber Security Onboard Ships (2nd Edition)||OCIMF and IUMI were the two additional contributors. The report was revised to reflect the fact that the guidelines are aimed specifically at ships and a new subchapter on insurance|
|2017/09||UK||Code of Practice – Cyber Security for ships||The Code aims to minimize the risk of cyber threats to shipping and the impact of any cyber-attack|
|2017/12||UK P&I Club||Cyber Fraud||The Bulletin reminds to its members of the existing danger caused by cyber-crimes|
|2018/02||Japan P&I Club||Cyber Risks and Cyber Security||The bulletin updates members on cyber risks and cyber security issues|
|2018/05||EU||General Data Protection Regulation||It aims to protect EU citizens from unauthorized use of their personal information from companies|