Subscribe to our Mailing Lists (It's free!)
Friday, July 4, 2025
SAFETY4SEA
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    AP Companies: How physical and mental well-being shape happier ships

    AP Companies: How physical and mental well-being shape happier ships

    bali indonesia

    Ferry sinks off Bali with multiple casualties

    Year in Review: How the Russian invasion of Ukraine affected shipping in 2022

    LR: New requirements for lifting appliances and anchor winches

    How IMO addresses cyber risk: An overview

    Two crew members accused over deadly tanker collision

  • SEAFiT
    • All
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
    neck pain

    Neck pain: A growing health concern for maritime workers

    Book Review: Building leaders the MMMA way

    Book Review: Feel grounded and think positive in 10 simple steps

    time

    Stay SEAFiT: Time is non-renewable – invest it wisely

    public speaking

    8 Key rules of Public Speaking

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    hull

    AkzoNobel: Quality antifouling coatings can help with CII and EEXI compliance

    nuclear power

    Nuclear shipping inches closer to reality: Latest developments

    nuclear energy ABS

    Consortium advances floating nuclear power for the Mediterranean

    CSA scrubbers

    CSA urges OSPAR to improve understanding before enacting scrubber ban

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    connectivity

    Innovating ocean safety: Intellian’s unified vision for connectivity and GMDSS

    autonomous navigation

    New deal aims to advance autonomous navigation technology

    abs training center

    ABS opens smart training center in Athens

    iaph cyber security

    IAPH releases cyber security guidelines for new port technologies

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    • Vetting
    OCIMF

    OCIMF Annual Report 2025: SIRE 2.0 a welcome change for the industry

    USCG

    ABS PSC Report Q1 2025: 526 total vessels detained

    paris mou lists

    Paris MoU 2024 Performance lists

    PSC

    AMSA Annual PSC Report: ISM-related deficiencies on the lead

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
    European Commission EU

    EU in discussions over maritime and port strategies

    underwater noise from ships

    AMSA: Reduction of underwater radiated noise from shipping

    nuclear energy ABS

    Consortium advances floating nuclear power for the Mediterranean

    Germany shadow fleet

    German Government increases vigilance in the Baltic Sea

  • Columns
    AMPI: Seafarers face critical risks in pilot transfer rigging

    AMPI: Seafarers face critical risks in pilot transfer rigging

    connectivity

    Innovating ocean safety: Intellian’s unified vision for connectivity and GMDSS

    human factor organizational safety

    Cracking the safety code: Why human factors matter

    Trending Tags

    • Anchor Your Health
    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • Events
  • Plus
No Result
View All Result
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    AP Companies: How physical and mental well-being shape happier ships

    AP Companies: How physical and mental well-being shape happier ships

    bali indonesia

    Ferry sinks off Bali with multiple casualties

    Year in Review: How the Russian invasion of Ukraine affected shipping in 2022

    LR: New requirements for lifting appliances and anchor winches

    How IMO addresses cyber risk: An overview

    Two crew members accused over deadly tanker collision

  • SEAFiT
    • All
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
    neck pain

    Neck pain: A growing health concern for maritime workers

    Book Review: Building leaders the MMMA way

    Book Review: Feel grounded and think positive in 10 simple steps

    time

    Stay SEAFiT: Time is non-renewable – invest it wisely

    public speaking

    8 Key rules of Public Speaking

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    hull

    AkzoNobel: Quality antifouling coatings can help with CII and EEXI compliance

    nuclear power

    Nuclear shipping inches closer to reality: Latest developments

    nuclear energy ABS

    Consortium advances floating nuclear power for the Mediterranean

    CSA scrubbers

    CSA urges OSPAR to improve understanding before enacting scrubber ban

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    connectivity

    Innovating ocean safety: Intellian’s unified vision for connectivity and GMDSS

    autonomous navigation

    New deal aims to advance autonomous navigation technology

    abs training center

    ABS opens smart training center in Athens

    iaph cyber security

    IAPH releases cyber security guidelines for new port technologies

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    • Vetting
    OCIMF

    OCIMF Annual Report 2025: SIRE 2.0 a welcome change for the industry

    USCG

    ABS PSC Report Q1 2025: 526 total vessels detained

    paris mou lists

    Paris MoU 2024 Performance lists

    PSC

    AMSA Annual PSC Report: ISM-related deficiencies on the lead

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
    European Commission EU

    EU in discussions over maritime and port strategies

    underwater noise from ships

    AMSA: Reduction of underwater radiated noise from shipping

    nuclear energy ABS

    Consortium advances floating nuclear power for the Mediterranean

    Germany shadow fleet

    German Government increases vigilance in the Baltic Sea

  • Columns
    AMPI: Seafarers face critical risks in pilot transfer rigging

    AMPI: Seafarers face critical risks in pilot transfer rigging

    connectivity

    Innovating ocean safety: Intellian’s unified vision for connectivity and GMDSS

    human factor organizational safety

    Cracking the safety code: Why human factors matter

    Trending Tags

    • Anchor Your Health
    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • Events
  • Plus
No Result
View All Result
SAFETY4SEA

How IMO addresses cyber risk: An overview

by The Editorial Team
January 14, 2020
in Cyber Security, Smart
How IMO addresses cyber risk: An overview
FacebookTwitterEmailLinkedin

The era of digitalization and rapid development of technologies in the maritime sector has called for immediate action, for the protection of the seafarers and the whole industry, which led the International Maritime Organization (IMO) to issue and implement a series of regulations and guidelines on cyber risk management, with, last but not least, the adoption of the Resolution MSC.428(98). This resolution calls companies to report any cyber risk in their ISM Code no later than January 1, 2021. Yet, keeping in mind that cyber risk is a ‘new’ challenge the industry led eyes on, how did the landscape of cyber regulations evolve the past years?

According to the IMO, ​maritime cyber risk refers to a measure of the extent to which a technology asset could be threatened by a potential circumstance or event, which may result in shipping-related operational, safety or security failures as a consequence of information or systems being corrupted, lost or compromised.

To begin with, in an exclusive interview with SAFETY4SEA, Mrs. Cynthia Hudson, CEO, Hudson Analytix has highlighted that any system which is digitally enabled is vulnerable to cyber-attacks, while these days nearly all systems that are connected are vulnerable, and as the shipping environment is being shaped upon the digital world, companies and all shipping stakeholders seem more vulnerable and exposed.

Cyber risk is a crucial barrier to the shipping industry, with attacks taking place more often than in the past, and shipping companies taking measures to deal with them and be protected, as an attack can cause major disruptions to operations.

Referring to the importance of cyber security nowadays, Mr. Chronis Kapalidis, Cyber Expert, HudsonAnalytix, speaking during the 2019 Hellenic American Maritime Forum stated that

RelatedNews

EU in discussions over maritime and port strategies

AMSA: Reduction of underwater radiated noise from shipping

Cyber security has been over the last years the first non-natural threat to the global risk landscape according to the World Economic Forum. This is only going to get worse because of rising cyber dependency. Everything that we do has a cyber element.

Therefore, taking into consideration the impact of cyber-attacks, the cost and time-loss to resolve operations a shipping stakeholder has to deal with, the International Maritime Organization focused on publishing a series of guidelines to help the industry cope with cyber challenges and boost their cyber risk management.

How it all started

It should be highlighted that except the IMO, additional shipping associations and classes have launched guidance and standards to assist the industry dealing with cyber risk.

#1 June 2016 –MSC.1/Circ. 1526

As the shipping industry had to deal with more and more cyber threats and risks, the Maritime Safety Committee approved, during its 96th session, the “Interim guidelines on maritime cyber risk management”.

These Guidelines set the base for dealing with cyber risks, including recommendations to safeguard shipping from current and emerging cyberthreats and vulnerabilities.

#2 June 2017 –MSC.428(98)

During the 98th session, the Maritime Safety Committee stated that all companies should include in their approved SMS the cyber risk management according with the objectives and functional requirements of the ISM Code.

The Resolution includes further recommendations as well, which can be summarized as following:

  • Identify: Define personnel roles and responsibilities for cyber risk management and identify the systems, assets, data and capabilities that, when disrupted, pose risks to ship operations.
  • Protect: Implement risk control processes and measures, and contingency planning to protect against a cyber-event and ensure continuity of shipping operations.
  • Detect: Develop and implement activities necessary to detect a cyber event in a timely manner.
  • Respond: Develop and implement activities and plans to provide resilience and to restore systems necessary for shipping operations or services impaired due to a cyber-event.
  • Recover: Identify measures to back-up and restore cyber systems necessary for shipping operations impacted by a cyber-event.

#3 July 2017 – MSC-FAL.1/Circ.3

In the 98th session, the MSC approved the Guidelines on maritime cyber risk management, with the guidelines referring to ship owners to be used as guidelines but remain non-compulsory.

A wind of change after 2020

By 2020 shipping companies will be required to assess their risk exposure and develop measures to include in their Safety Management Systems to mitigate cyber threats.

The timeframe between 2020-2021 will be catalytic, as the IMO decided that no later than the annual verification of each company’s Document of Compliance, the 1st of January 2021, all shipping companies will be mandated to ensure that cyber risks are appropriately addressed in existing safety management systems (as defined in the ISM Code).

These guidelines provide recommendations and include functional elements that support effective cyber risk management. In addition, the recommendations can be included in existing risk management processes and are complementary to the safety and security management practices already established by IMO.

The above decision highlights the importance of reporting cyber risks, as it has been previously stated that under-reporting is a crucial threat to the maritime sector. Specifically, Be Cyber Aware at Sea in its July issue noted that there is a gap between the number of cyber-related incidents that occur in the maritime industry and the lower number that are being reported.

Also, IMO’s decision is a major step towards being ready and having a risk management approach under the possibility of a cyber-attack.

Applauding IMO’s decision, Mr Kapalidis has commented that

… when we talk about cyber security, it is not a matter of if you will be attacked but when. In order to deal with that, you should have a risk management approach on it and this what the IMO is introducing.

  Did you know?

People and planning are major steps for the utmost protection against a cyber attack:

  1. a) Norsk Hydro was cyber attacked, hit by the comparatively new LockerGoga virus at first, before spreading to its network encrypting files. In light of the incident, Per Martin Tanggaard, Director of Nor-Shipping, stated that this attack was a showcase of the increasing risk that maritime and ocean companies face.
  2. b) Mrs. Cynthia Hudson has advised that before an attack occurs:
  • Assess: Perform a cybersecurity capability assessment of your entire organization
  • Plan: Establish a cyber incident response (IR) plan.
  • Train: Incorporate cyber risks into tabletop exercises.
  • Integrate Plans: Data Loss Prevention (DLP), Disaster Recovery (DR) and Business Continuity Plans (BCP).

How IMO addresses cyber risk: An overviewHow IMO addresses cyber risk: An overview
How IMO addresses cyber risk: An overviewHow IMO addresses cyber risk: An overview
Tags: automationcyber securitydigitalizationIMOIMO MSCMSCregulatory update cmsafety measuresshipping industry
Previous Post

PCG rescues injured crew from Chinese cargo vessel

Next Post

Disruptive trends and implications for continuing talent development and acquisition

Related News

Year in Review: How the Russian invasion of Ukraine affected shipping in 2022
Regulation

LR: New requirements for lifting appliances and anchor winches

July 3, 2025
AMSA
Seafarers

AMSA: Watchkeeping and crewing standards

July 3, 2025
emergency stop
Loss Prevention

NMA: Emergency stop & regular function testing of safety devices

July 3, 2025
Germany shadow fleet
Shipping

German Government increases vigilance in the Baltic Sea

July 2, 2025
MSC 110
Seafarers

IMO targets fatigue, work and rest hours and harassment at sea

July 2, 2025
china
Loss Prevention

Key measures for discharge compliance in China’s Coastal Waters

July 1, 2025

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Explore more

No Result
View All Result
MARITIME EVENTS

Explore

  • Safety
  • SEAFiT
  • Green
  • Smart
  • Risk
  • Others
  • SAFETY4SEA Events
  • SAFETY4SEA Plus Subscription

Useful Links

  • About
  • Disclaimer
  • Editorial Policies
  • Advertising
  • Content Marketing
  • Contact

© 2025 SAFETY4SEA

No Result
View All Result
  • Safety
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
  • SEAFiT
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
  • Green
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
  • Smart
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
  • Risk
    • CIC
    • Detentions
    • Fines
    • PSC Case Studies
    • PSC Focus
    • Vetting
  • Others
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
  • Columns
    • Anchor Your Health
    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Opinions
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Tip of the day
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • SAFETY4SEA Events
  • SAFETY4SEA Plus Subscription

© 2025 SAFETY4SEA

Manage your privacy
We use technologies like cookies to store and/or access device information. We do this to improve browsing experience and to show (non-) personalized ads. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Manage options
{title} {title} {title}
No Result
View All Result
  • Safety
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
  • SEAFiT
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
  • Green
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
  • Smart
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
  • Risk
    • CIC
    • Detentions
    • Fines
    • PSC Case Studies
    • PSC Focus
    • Vetting
  • Others
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
  • Columns
    • Anchor Your Health
    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Opinions
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Tip of the day
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • SAFETY4SEA Events
  • SAFETY4SEA Plus Subscription

© 2025 SAFETY4SEA