In order to respond to the increased cyber threat and avoid the consequences of not being prepared, international shipping organizations are developing guidelines, aiming to assist companies develop resilient methods and procedures for cyber security onboard ships.

Therefore, it is important all industry’s stakeholders to understand the threat landscape, consider the given guidelines and comply with the upcoming legislation in order to be fully prepared to address the associated challenges.

Date Publsiher Name of Publication Information
2012 ISO ISO 27032:2012 The standard covers the baseline security practices for stakeholders in the Cyberspace
2016/02 BIMCO, CLIA, ICS, INTERCARGO and INTERTANKO Guidelines on Cyber Security onboard ships (1st Edition) The guidelines introduce a 6-step cyber security awareness framework to lower cyber security risks
2016/02 ABS The application of Cyber Security principles to marine and offshore operations Best practices for cyber security to marine and offshore communities, applicable to ships, platforms, and support facilities
2016/06 IMO (MSC96) MSC.1/Circ. 1526 Interim Guidelines on Maritime Cyber Risk Management
2016/06 North P&I Club Cyber Risks in Shipping A loss prevention briefing  showing examples of how vulnerable are various vessel systems
2016/06 DNV GL Cyber Security Resilience Management A Recommended Practice on how to apply ISO/IEC-27001 and ISA-99/IEC-62443 standards
2017/01 USCG CG-5P Policy Letter 08-16 ‘’Reporting Suspicious Activity and Breaches of Security” outlines the criteria for both suspicious activity and breaches of security and covers the reporting requirements
2017/01 Steamship Mutual ‘’Cyber Security: Smart, Safe Shipping” DVD The DVD received the 2018 SMART4SEA Cyber Security Award for promoting  awareness of cyber risks at sea  featuring advice on strategies that ought to be adopted
2017/03 Lloyd’s Register Cyber Security program The program is based on a flexible and sustainable model, to provide clarity and help companies to develop their cyber security strategy
2017/04 OCIMF TMSA 3 For the first time, TMSA introduced maritime security as Element 13 including cyber security.
2017/06 IMO (MSC 98) MSC.428(98) An approved SMS should take into account cyber risk management in accordance with the objectives and functional requirements of the ISM Code
2017/06 Bureau Veritas Cyber Security Guidelines for Software Development & Assessment The guide emphasizes a set of security objectives addressed to software developers and highlights good practices to be implemented in order to manage the security of software systems
2017/07 IMO MSC-FAL.1/Circ.3 The guidelines refer to ship owners as guidance for cyber risk management and remain non-compulsory
2017/07 BIMCO and other Associations The Guidelines on Cyber Security Onboard Ships (2nd Edition) OCIMF and IUMI were the two additional contributors. The report was revised to reflect the fact that the guidelines are aimed specifically at ships and a new subchapter on insurance
2017/09 UK Code of Practice - Cyber Security for ships The Code aims to minimize the risk of cyber threats to shipping and the impact of any cyber-attack
2017/12 UK P&I Club Cyber Fraud The Bulletin reminds to its members of the existing danger caused by cyber-crimes
2018/02 Japan P&I Club Cyber Risks and Cyber Security The bulletin updates members on cyber risks and cyber security issues
2018/05 EU General Data Protection Regulation It aims to protect EU citizens from unauthorized use of their personal information from companies