Subscribe to our Mailing Lists (It's free!)
Saturday, May 28, 2022
SAFETY4SEA
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    day of the seafarer 2022

    IMO: Seafaring is a noble profession

    port of brisbane

    ATSB investigates breakaway incidents in Port of Brisbane

    marking labels symbols

    Lessons learned: Pay close attention to labels, markings and symbols

    barge loses containers

    Watch: Container barge loses 12 containers overboard

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    ship it zero coalition

    Ship it Zero coalition: Shipping companies should invest in zero-emissions technologies and fuels

    oil spill port elizabeth

    Oil spill occurs during oil transfer at Port Elizabeth

    port of tallinn port of gdynia

    Port of Tallinn, Port of Gdynia to collaborate on hydrogen management

    canada ballast form

    How to properly submit the Canadian Ballast Water Reporting form

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    cyber attack port of london

    Cyber-attack targets Port of London Authority

    emsa drones

    EMSA drones monitor sulphur and nitrogen emissions from ships in the English Channel

    Port of Antwerp

    New agreement to advance vessel automation pilot programs in Belgium

    port of long beach

    Port of Long Beach, Amazon collaborate to improve cargo data

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    captain arrested

    Captain of cargo vessel arrested for drink-driving

    glencore

    Glencore pleas guilty to foreign bribery and market manipulation

    ship owner guilty environmental crime

    US: Ship owner and operator plead guilty to environmental and safety crimes

    us seizes oil from tanker

    US seizes oil from Russian tanker

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Reports
    • Shipping
    • Sustainability
    • Videos
    day of the seafarer 2022

    IMO: Seafaring is a noble profession

    north standard merger

    Merger of North and Standard Club receives approval

    uscg ystems Containing Plastic Pipe

    USCG: Review of systems containing plastic pipe

    russian ships eu ports

    Ban of Russian ships in EU ports: Everything you need to know

  • Columns
    Wind Propulsion: Building a level playing field for the decarbonization of shipping

    Wind Propulsion: Building a level playing field for the decarbonization of shipping

    worker dies at chittagong

    EU Taxonomy & Ship Recycling

    Fleet Safety to modernise maritime distress communication

    Fleet Safety to modernise maritime distress communication

    Trending Tags

    • Career Paths
    • Industry Voices
    • Maripedia
    • Maritime History
    • Resilience
    • Seafarers Stories
    • SeaSense
  • Events
  • Plus
No Result
View All Result
  • Home
  • Safety
    • All
    • Accidents
    • Alerts
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
    day of the seafarer 2022

    IMO: Seafaring is a noble profession

    port of brisbane

    ATSB investigates breakaway incidents in Port of Brisbane

    marking labels symbols

    Lessons learned: Pay close attention to labels, markings and symbols

    barge loses containers

    Watch: Container barge loses 12 containers overboard

  • Green
    • All
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
    ship it zero coalition

    Ship it Zero coalition: Shipping companies should invest in zero-emissions technologies and fuels

    oil spill port elizabeth

    Oil spill occurs during oil transfer at Port Elizabeth

    port of tallinn port of gdynia

    Port of Tallinn, Port of Gdynia to collaborate on hydrogen management

    canada ballast form

    How to properly submit the Canadian Ballast Water Reporting form

  • Smart
    • All
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
    cyber attack port of london

    Cyber-attack targets Port of London Authority

    emsa drones

    EMSA drones monitor sulphur and nitrogen emissions from ships in the English Channel

    Port of Antwerp

    New agreement to advance vessel automation pilot programs in Belgium

    port of long beach

    Port of Long Beach, Amazon collaborate to improve cargo data

  • Risk
    • All
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    captain arrested

    Captain of cargo vessel arrested for drink-driving

    glencore

    Glencore pleas guilty to foreign bribery and market manipulation

    ship owner guilty environmental crime

    US: Ship owner and operator plead guilty to environmental and safety crimes

    us seizes oil from tanker

    US seizes oil from Russian tanker

  • Others
    • All
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Reports
    • Shipping
    • Sustainability
    • Videos
    day of the seafarer 2022

    IMO: Seafaring is a noble profession

    north standard merger

    Merger of North and Standard Club receives approval

    uscg ystems Containing Plastic Pipe

    USCG: Review of systems containing plastic pipe

    russian ships eu ports

    Ban of Russian ships in EU ports: Everything you need to know

  • Columns
    Wind Propulsion: Building a level playing field for the decarbonization of shipping

    Wind Propulsion: Building a level playing field for the decarbonization of shipping

    worker dies at chittagong

    EU Taxonomy & Ship Recycling

    Fleet Safety to modernise maritime distress communication

    Fleet Safety to modernise maritime distress communication

    Trending Tags

    • Career Paths
    • Industry Voices
    • Maripedia
    • Maritime History
    • Resilience
    • Seafarers Stories
    • SeaSense
  • Events
  • Plus
No Result
View All Result
SAFETY4SEA

Key considerations for upcoming IMO Resolution on cyber security from the operator’s perspectives

by Kostas Vlachos
November 30, 2020
in Opinions
SeaSense
FacebookTwitterEmailLinkedin

The clock is ticking towards the IMO Resolution taking effect from January 2021 that states cyber security should be included in safety management systems (SMS). Whether shipping industry is ready or not to comply with the new requirements is currently the million-dollar question. In this context, Mr Kostas Vlachos, Chief Operating Officer, LATSCO shares his perspective and what needs to be considered, in less than a month, in Safety Management Systems.

Now that the new requirement is coming into force from January 1st 2021, the task of the shipping industry is not only to amend the existing SMS system to cover issues of Cyber Risk management; this is something that easily can be done getting something ready from the self. The main challenge is to assess all identified risks to ships, personnel and the environment and establish appropriate safeguards. It must start with a Hardware inventory on IT and OT systems of the vessel and develop and maintain a register of all critical system hardware on board, including authorized and unauthorized devices on company controlled networks. The SMS should include procedures for maintaining this inventory throughout the operational life of the ship.  Also should develop a Software inventory – Develop and maintain a register of all authorized and unauthorized software running on company controlled software onboard, including version and update status.

The SMS should be updated to include procedures for:

  • maintaining this inventory when hardware controlled by the company is replaced
  • maintaining this inventory when software controlled by the company is updated or changed
  • authorizing the installation of new or upgraded software on hardware controlled by the company
  • prevention of installation of unauthorized software, and deletion of such software if identified
  • software maintenance

Also the company should develop a Map data flows – Map data flows between critical systems and other equipment / technical systems on board and ashore, including those provided by third parties. Vulnerabilities identified during this process should be recorded and securely retained by the company.

RelatedNews

Wind Propulsion: Building a level playing field for the decarbonization of shipping

EU Taxonomy & Ship Recycling

The SMS should be updated to include procedures for:

  • maintaining the map of data flows to reflect changes in hardware, software and/or connectivity
  • identifying and responding to vulnerabilities introduced when new data flows are created following the installation of new hardware
  • reviewing the need for connectivity between critical systems and other OT and IT systems. Such a review should be based on the principle that systems should only be connected where there is a need for the safe and efficient operation of the ship, or to enable planned maintenance
  • controlling the use of removable media, access points and the creation of ad-hoc or uncontrolled data flows. This may be achieved by restrictions on the use of removable media and disabling USB and similar ports on critical systems.

All these matters require an in depth analysis an expertise and quite a long time.

 

The views presented hereabove are only those of the author and not necessarily those of  SAFETY4SEA and are for information sharing and discussion  purposes only.


Kostas Vlachos, COO, Latsco Shipping Ltd

Kostas Vlachos is Mechanical / Electrical Engineer graduated from Technical University of Athens in 1981. From 1982 to 1996 he served in the Merchant Ships Inspectorate of the Greek Ministry of Merchantile Marine in various positions with the most important that of MARPOL Convention department head and ISM implementation department head. In the same period he was a Member of the Greek delegation in IMO as well as in various EU committees and subcommittees in Maritime Safety Committee and MEPC (Marine Environment Protection Committee). In 1997 he joined the Consolidated Marine Management Inc. as DPA/DMR and as Marine, Safety & Quality Manager.In February 2005 he assumed the duties of the COO/Managing Director of the Company having full control and responsibilities on all activities and departments of the Company. Starting from 1st January 2019, Consolidated Marine Management Inc. has changed its name to Latsco Marine Management Inc. He is a member of ABS, DNV, LRS, technical committees. In 2013, he was elected Chairman of Intertanko Hellenic Mediterranean Panel & Council member. Since 2014 he is a member of the executive committee of Intertanko, and ISTEC member.

Tags: cyber securityIMOsm
Kostas Vlachos

Kostas Vlachos

Kostas Vlachos is Mechanical / Electrical Engineer graduated from Technical University of Athens in 1981. From 1982 to 1996 he served in the Merchant Ships Inspectorate of the Greek Ministry of Merchantile Marine in various positions with the most important that of MARPOL Convention department head and ISM implementation department head. In the same period he was a Member of the Greek delegation in IMO as well as in various EU committees and subcommittees in Maritime Safety Committee and MEPC (Marine Environment Protection Committee). In 1997 he joined the Consolidated Marine Management Inc. as DPA/DMR and as Marine, Safety & Quality Manager.In February 2005 he assumed the duties of the COO/Managing Director of the Company having full control and responsibilities on all activities and dpts of the Company. He is a member of ABS, DNV, LRS, technical committees. In 2013 was elected Chairman of Intertanko Hellenic Mediterranean Panel & Council member. Since 2014 he is a member of the executive committee of Intertanko, and ISTEC member.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

day of the seafarer 2022

IMO: Seafaring is a noble profession

May 27, 2022
north standard merger

Merger of North and Standard Club receives approval

May 27, 2022
MARITIME EVENTS

Newsletter

GET THE SAFETY4SEA IN YOUR INBOX!

Explore

  • Safety
  • Green
  • Smart
  • Risk
  • Others
  • Events
  • Plus

Useful Links

  • About
  • Disclaimer
  • Editorial Policies
  • Advertising
  • Contact

© 2021 SAFETY4SEA

No Result
View All Result
  • Safety
    • Alerts
    • Accidents
    • Loss Prevention
    • Maritime Health
    • Regulation
    • Safety
    • Seafarers
    • Security
  • Green
    • Arctic
    • Ballast
    • Emissions
    • Fuels
    • Green Shipping
    • Pollution
    • Ship Recycling
    • Technology
  • Smart
    • Connectivity
    • Cyber Security
    • E-navigation
    • Energy Efficiency
    • Maritime Software
    • Smart
  • Risk
    • CIC
    • Detentions
    • Fines
    • PSC Focus
    • Vetting
  • Others
    • Diversity in shipping
    • Maritime Knowledge
    • Offshore
    • Ports
    • Reports
    • Shipping
    • Sustainability
    • Videos
  • Columns
    • Opinions
    • Career Paths
    • Industry Voices
    • Maripedia
    • Maritime History
    • Seafarers Stories
    • SeaSense
  • Events
  • Plus

© 2021 SAFETY4SEA

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Disclaimer.