Subscribe to our Mailing Lists (It's free!)
Friday, May 30, 2025
SAFETY4SEA
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    schedule

    A testing & inspection schedule for fire protection equipment onboard

    lessons learned

    Lessons learned: Ensure worksite is left safe for other users

    fire protection equipment

    Onboard inspections: 13 fire protection equipment items to check annually

    Yet another commercial vessel gets attacked in the Red Sea

    Russian seafarers evacuated from oil tanker in Yemen

  • SEAFiT
    • All
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
    culture of respect

    Addressing crew shortage: Establish clear expectations for respectful and professional behaviour

    Book Review: Building leaders the MMMA way

    Book Review: How to avoid a climate disaster

    mental health

    MOL takes step to enhance the mental health of its crew

    Book Review: Building leaders the MMMA way

    Book Review: The Art Of War

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    biofuels

    Rystad Energy: Biofuel supply is not keeping up with demand

    green shipping recycling

    Asian Shipowners show commitment to HKC compliance

    South Korea electric vessel standards

    South Korea updates electric vessel standards

    Rotor Sails

    Norsepower to equip six newbuild tankers with Rotor Sails

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    AI critical thinking

    Shaping the future: Critical thinking in the age of machines

    MASS

    LR: MASS safety hinges on clearly defined operational boundaries

    ammonia

    Companies shake hands to digitalize ammonia bunkering

    digitalization

    New dataset aligned with IMO Compendium post-FAL 49

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    • Vetting
    NCL Salten

    Inspection onboard NCL Salten reveals deficiencies

    India monsoon

    India: Mooring and anchoring during the Monsoon season

    hull

    Libya mandates underwater hull inspections

    Indian Ocean MoU Annual report

    Indian Ocean MoU PSC Annual Report 2024

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
    dry bulk

    Baltic Exchange: Maritime market highlights 26-30 May

    Singapore maritime

    Singapore and France ink agreement for various maritime projects

    schedule

    A testing & inspection schedule for fire protection equipment onboard

    fire protection equipment

    Onboard inspections: 13 fire protection equipment items to check annually

  • Columns
    seafarers

    Leading from every position: Building a culture of proactive seafarers

    fuels

    Fuel pathways to net zero emissions

    green shipping

    Decarbonization and emission compliance through efficiency measures

    Trending Tags

    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • Events
  • Plus
No Result
View All Result
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    schedule

    A testing & inspection schedule for fire protection equipment onboard

    lessons learned

    Lessons learned: Ensure worksite is left safe for other users

    fire protection equipment

    Onboard inspections: 13 fire protection equipment items to check annually

    Yet another commercial vessel gets attacked in the Red Sea

    Russian seafarers evacuated from oil tanker in Yemen

  • SEAFiT
    • All
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
    culture of respect

    Addressing crew shortage: Establish clear expectations for respectful and professional behaviour

    Book Review: Building leaders the MMMA way

    Book Review: How to avoid a climate disaster

    mental health

    MOL takes step to enhance the mental health of its crew

    Book Review: Building leaders the MMMA way

    Book Review: The Art Of War

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    biofuels

    Rystad Energy: Biofuel supply is not keeping up with demand

    green shipping recycling

    Asian Shipowners show commitment to HKC compliance

    South Korea electric vessel standards

    South Korea updates electric vessel standards

    Rotor Sails

    Norsepower to equip six newbuild tankers with Rotor Sails

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    AI critical thinking

    Shaping the future: Critical thinking in the age of machines

    MASS

    LR: MASS safety hinges on clearly defined operational boundaries

    ammonia

    Companies shake hands to digitalize ammonia bunkering

    digitalization

    New dataset aligned with IMO Compendium post-FAL 49

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    • Vetting
    NCL Salten

    Inspection onboard NCL Salten reveals deficiencies

    India monsoon

    India: Mooring and anchoring during the Monsoon season

    hull

    Libya mandates underwater hull inspections

    Indian Ocean MoU Annual report

    Indian Ocean MoU PSC Annual Report 2024

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
    dry bulk

    Baltic Exchange: Maritime market highlights 26-30 May

    Singapore maritime

    Singapore and France ink agreement for various maritime projects

    schedule

    A testing & inspection schedule for fire protection equipment onboard

    fire protection equipment

    Onboard inspections: 13 fire protection equipment items to check annually

  • Columns
    seafarers

    Leading from every position: Building a culture of proactive seafarers

    fuels

    Fuel pathways to net zero emissions

    green shipping

    Decarbonization and emission compliance through efficiency measures

    Trending Tags

    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • Events
  • Plus
No Result
View All Result
SAFETY4SEA

SeaSense – Expert Thinking on IMO Resolution regarding Cyber Security

by The Editorial Team
December 9, 2020
in Cyber Security
cyber security

Credit: Shutterstock

FacebookTwitterEmailLinkedin

From 1st of January, 2021 cyber security will be a new requirement for all Safety Management Systems, according to IMO Resolution. In our special column SeaSense, in association with The North of England P&I Club, we ask global experts to provide feedback on the following question:

Is the shipping industry prepared for the IMO Resolution taking effect from January 2021 that states cyber security should be included in safety management systems (SMS)?

 

 

SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityYoshinori Kozeki
Corporate Officer, Director of Survey Operations Division, ClassNK
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityVincent Lagny
Head of Cyber Security and Safety, Bureau Veritas
Yes. Although the IMO Resolution is a non-compulsory requirement, the entire maritime community seems concerned ahead of 2021, as proven by an increasing number of related inquiries from management companies. Cyber risks are a new challenge, but the shipping industry has utilized SMS in line with ISM Code to control various risks, and such approach should work this time. Focusing on MSC.428(98) request “SMS should take into account cyber risk management in accordance with the objectives and functional requirements of the ISM Code”, ClassNK has prepared its audit scheme also considering flag states requirements to assist the industry’s actions swiftly. Moreover, we hope to provide expertise based on the collaboration with cyber risk experts and our accumulated knowledge of ships. Maybe. On one hand the industry stakeholders (i.e. BIMCO, DCSA) and the International Association of Classification Societies (IACS) have delivered a substantial, applicable and efficient set of guidelines, rules and documentation for cyber risk management. This baseline of documents contributes to the enforcement of this resolution. On the other hand, few national authorities have shared instructions on vessel cyber risk management and few shipowners have anticipated the implementation of this resolution. As a consequence, the global level of vulnerability of vessels will be more or less the same on 1st January 2021. Even if we notice an increased consideration for cyber security (mostly because of recent events relayed by the media), technically speaking, OT systems connectivity, for example, is still growing without risk assessment, which can lead to data corruption or systems unavailability. In terms of organization, crew awareness, logical access control, cyber systems monitoring, incident response are yet to be seriously addressed.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecuritySvante Einarsson
Team Leader Cyber Security, DNVGL Maritime Advisory
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityIan Bramson
Global Head of Cyber Security, ABS Group of Companies Inc.
Maybe. Awareness of the IMO resolution appears good and with that organizations have a good starting point for cyber risk management (CRM) preparing for the 2021 DOC audits. It is less certain that measures needed are effectively implemented. No two organizations are the same and the SMS measures must fit Company needs. Developing, implementing and assessing, measure effectiveness takes time. Compliance must be in accordance with ISM and we recommend using existing SMS solutions for compliance and maritime specific standards as benchmarks supporting internal/external verification activities. Close collaboration between managers/operators, vendors, yards and classification societies is essential for effective handling of CRM. We will continue contributing through our services for ISM certification, cyber secure class notation and cyber risk consultancy. Maybe. Although there has been much publicity around the IMO Resolution, many owners and operators have just started or are not sure where to begin. This is further complicated by the fact that there is no “one-size-fits-all” approach. There are many factors that go into a cyber risk management program – the type of business, the complexity of the IT and OT networks, the operational profile of the vessel, etc. The resolution is meant to be a guideline and good cyber risk management must be designed around the applicable regulatory and unique operational challenges of each business.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityMark Milford
Vice President, Cyber Security, Warstila
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityColin Gillespie
Director (Loss Prevention), The North of England P&I Club
MAYBE– Shipping’s digital transformation is very much underway, driven by innovative manufacturers offering increasingly complex and connected solutions. As the positive impacts of digitalisation become more widely accepted across the industry there will be further acceleration. Late adopters will embrace new opportunities and early adopters will iterate and accelerate to realise even greater rewards for their business. Resolution MSC.428(98), commonly referred to as IMO 2021 and intrinsically tied to the SOLAS convention, is increasing the understanding of mitigating risks associated with this new technology. Wärtsilä is helping our customers understand IMO 2021. Whilst some customers are more mature in their cyber awareness than others, the move towards including cyber risks within the ships Safety Management System (SMS) is definitely underway. Yes, the industry is aware that it has to comply with the regulations and that cyber security is an issue that needs to be managed. There is a very broad spectrum of responses from shipping companies, some taking the issue very seriously, and others adopting a minimum compliance stance. This is no surprise in such a diverse industry. The requirement to manage cyber risks via the SMS has forced the shipping industry to take its first steps towards cyber maturity. No doubt there will be setbacks for individual companies, sectors and the wider industry along the way. But over time cyber risks will become well understood, accepted as a normal business risk and managed alongside all the other risks faced in shipping.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityLars Jensen
Maritime Security Advisor, Improsec
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityJames E. McKee
Founder and CEO, Red Sky Alliance and Wapack Labs LLC
No. In essence there are three groups within the sector. Those who are actively taking care of cyber security, those who are seeing this as a “tick-box” exercise, and those who are not yet genuinely addressing the issue at all. The first group is a clear minority. The risk is that companies see this yet another compliance “tick-box” and not as way to actually improve their defensive position. This starts with an onsite hard look at the actual cyber security settings, but is something often skipped over in favor of assuming the weaknesses in the OT and IT layout are well known, as well as assuming compliance with basic cyber hygiene. Maybe! Red Sky Alliance/Wapack Labs is tracking cyber security threats in the Maritime Environment. The entire transportation sector is under constant cyber threat, specifically the maritime industry. Our collections and analyses continue to expose cyber threats and vulnerabilities in supply chain members. If a shipping company follows the upcoming IMO Resolution, other supply chain members, such as trucking, rail and port facilities may not be complying. Humans are the weakest link in cyber vulnerability. Company employees at any leg of a transportation supply chain can fall for a tempting or official appearing email that could be the opening for malware infection, then move inside all of the networks of the entire supply chain and ports.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityNikos Kefalas
HSSE/QA Manager, China LNG Shipping (International) Co., Ltd.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityCostas Th. Kontes
Managing Director, V.Ships Greece Ltd.
MAYBE. The last years we have seen a lot of guidance and support for ship managers to develop processes and plans to ensure compliance with the IMO requirements. Although this guidance is been useful, there is a lack of standardization, especially from the flag states and recognised organizations, that may have as result the lack of common approach and possible misunderstanding. Despite that, the maritime industry is becoming more mature and continuously develops competencies for the management of cybersecurity. And at the end is more about managing the risk rather than only compliance and as managers we have to take responsibility to ensure proper engagement and to enhance cyber risk management approach culture both onboard and ashore. No, we are not completely ready as an industry yet; however, quite a few companies have already implemented since a number of years precautionary measures, carrying out audits. For V. Group, Cyber security is integral to operational safety. Over the last 18 months, the organisation has launched a number of initiatives to ensure all colleagues understand the importance of cyber security. We have also been working hard to address the latest IMO Resolution on Maritime Cyber Risk Management by developing our very own Cyber Safety package, as a complete framework to meet IMO requirements. The framework addresses the 5 areas identified in BIMCO guidelines (Identify, Protect, Detect, Respond and Recover). The V. Ships framework is cyber safety from the ground up, with the implementation of policies, technology, and support.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityKosts Vlachos
Chief Operating Officer, LATSCO
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecuritySpyros Vlassopoulos
Managing Director, Ionic Shipping (Mgt) Inc.
Maybe. The task of the shipping industry with the new requirement is not only to amend the existing SMS system so that to cover matters of Cyber Risk management . The main challenge is to assess all identified risks to ships, personnel and the environment and establish appropriate safeguards. It must start with a Hardware inventory on IT and OT systems of the vessel and develop and maintain a register of all critical system hardware on board, including authorized and unauthorized devices on company controlled networks. The SMS should include procedures for maintaining this inventory throughout the operational life of the ship. Also should develop a Software inventory. All these matters require an in depth analysis an expertise and quite a long time. View more here  YES. Data breaches are unfortunately an everyday event whilst becoming more and more common in our lives today. As such, all shipping professionals have a specific obligation to protect themselves, their organizations and their clients from exposure to such threats, ensuring the safety of their vessels that trade worldwide and organizations managing them. The truthful fact is that since the beginning of 2020 where the worldwide pandemic commenced affected us all, everyone one way or another “sharpened their pencils” (whether one liked it or not) on IT skills and procedures, in view of new ways of working entered our lives in view of reduced travel, lockdowns and the like. Such examples included new video conferencing platforms, new IT software, many apps and services, just to name a few. As such, the way the threat landscape has evolved proves that cyber hackers remain undeterred from compromising systems for their own gain. Moreover, it’s been repeatedly shown that they shift and adapt in their choice of attack prompting the need for users and organizations within the shipping industry to stay ahead. As it has been recently stressed on numerous occasions, this is not an IT issue but a risk management issue on how each and every one of us should be protecting our data accordingly. The bottom line is that all companies – big and small – need to be continually aware to protect themselves and their clients. Practicing good cyber hygiene and making sure everyone within acknowledges and follows same is critical to its success. The future looks complex, exposed, and misconfigured — but it is also defensible.
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecurityUlfert Gartz
Senior Vice President Information Technology, ZEABORN Ship Management GmbH & Cie. KG
 
MAYBE. Cyber and information security threats have grown in complexity and IMO has a valid concern. Owners are reviewing their processes and approaching their shipmanagers to achieve reliable procedures and evidence for secure vessel operations. We at ZEABORN know that cyber security does not come over night by filling a checklist. Staff on board and in office are the main actors in handling company’s IT devices and information security assets; therefore, the focus of awareness to cyber security related tasks is a must within the entire company management system. It is not a status but a continual process of assessing your current risk profile, monitoring your established controls, and improving your measures on an ongoing base. ZEABORN had followed best industry guidelines for their fleet since many years and is well prepared for IMO 2021. Our ISO 27001 certification provided a framework to align this ongoing approach to good practice and to ensure cyber security governance for the fleet under management – as an ongoing voyage.

 

RelatedNews

Mexico prepares Action Plan for maritime decarbonization

Change is vital to overcome barriers for women in maritime

SeaSense – Expert Thinking on IMO Resolution regarding Cyber Security

SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecuritySeaSense – Expert Thinking on IMO Resolution regarding Cyber Security
SeaSense – Expert Thinking on IMO Resolution regarding Cyber SecuritySeaSense – Expert Thinking on IMO Resolution regarding Cyber Security
Tags: cyber securityIMONorth ClubSeaSensesm
Previous Post

Biofuels are not the solution, European think tank says

Next Post

NIMASA: Supporting local players could give a solution to West Africa’s maritime security

Related News

cyber security
Cyber Security

CyberOwl raises alarm on phising and malware campaign

May 23, 2025
Pacific Environment
Emissions

Pacific Environment: IMO’s carbon levy is a progress but more steps are needed

May 23, 2025
NCSR 12
Regulation

IMO NCSR 12: Key outcomes

May 23, 2025
fuel sampling
Fuels

CMT: MARPOL update raises bar for fuel sampling

May 22, 2025
biodiversity
Sustainability

Biodiversity and the marine environment

May 22, 2025
Karin Orsel receives IMO Gender Equality Award
Diversity in shipping

Karin Orsel receives IMO Gender Equality Award

May 22, 2025

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Explore more

No Result
View All Result
MARITIME EVENTS

Explore

  • Safety
  • SEAFiT
  • Green
  • Smart
  • Risk
  • Others
  • SAFETY4SEA Events
  • SAFETY4SEA Plus Subscription

Useful Links

  • About
  • Disclaimer
  • Editorial Policies
  • Advertising
  • Content Marketing
  • Contact

© 2025 SAFETY4SEA

No Result
View All Result
  • Safety
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
  • SEAFiT
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
  • Green
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
  • Smart
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
  • Risk
    • CIC
    • Detentions
    • Fines
    • PSC Case Studies
    • PSC Focus
    • Vetting
  • Others
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
  • Columns
    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Opinions
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Tip of the day
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • SAFETY4SEA Events
  • SAFETY4SEA Plus Subscription

© 2025 SAFETY4SEA

Manage your privacy
We use technologies like cookies to store and/or access device information. We do this to improve browsing experience and to show (non-) personalized ads. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Manage options
{title} {title} {title}
No Result
View All Result
  • Safety
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
  • SEAFiT
    • Intellectual
    • Mental
    • Physical
    • Social
    • Spiritual
  • Green
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
  • Smart
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
  • Risk
    • CIC
    • Detentions
    • Fines
    • PSC Case Studies
    • PSC Focus
    • Vetting
  • Others
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Shipping
    • Sustainability
    • Videos
  • Columns
    • Book Review
    • Career Paths
    • Human Performance
    • Industry Voices
    • Interviews
    • Maripedia
    • Maritime History
    • Opinions
    • Regulatory Update
    • Resilience
    • Seafarers Stories
    • SeaSense
    • Tip of the day
    • Training & Development
    • Wellness Corner
    • Wellness Tips
  • SAFETY4SEA Events
  • SAFETY4SEA Plus Subscription

© 2025 SAFETY4SEA