The Growing Importance of Cyber Security in Maritime Operations

129

As vessels become increasingly complex with integrated digital systems both on board and onshore, the threat of cyber-attacks heightens, necessitating enhanced cyber security measures. These measures aim to ensure the safety of crew, passengers, and assets by mitigating risks associated with digital integration, reports DNV.

Key Reasons for Maritime Cyber Security

  1. Increased Digital Integration: Digital technologies improve navigation, logistics, and communication, contributing to energy efficiency and reduced emissions. However, they also expose critical infrastructure to added risks.
  2. Regulatory Compliance: The ISM Code and IMO Resolution MSC.428(98), introduced in 2021, mandate the implementation of cyber-security management systems.
  3. New Unified Requirements: IACS requires cyber security barriers in systems and vessels for all new builds after 1 July 2024, with ship classification societies verifying compliance.
  4. Insurance Contracts: Standard insurance contracts exclude cyber incidents, but insurers offer coverage if adequate cyber security measures are in place.
  5. Banking Requirements: Banks may require proof of cyber security to grant loans for vessel purchases or construction.
  6. Operational Continuity: Ensuring continuous operation during and after cyber incidents is crucial.

Building Cyber Security Resilience

Building resilience involves assessing the current status, setting objectives, developing measures, and striving for continuous improvement. DNV recommends addressing three dimensions: people, processes, and technology.

Recommended Actions

  • Training and Drills: Conduct specialized training and incident response drills for crew and onshore staff.
  • Cyber Security Management System: Implement and manage a comprehensive cyber security system for the fleet.
  • Technical Barriers: Utilize network segregation, USB control, virus scanning, secure access, and backup/recovery solutions.
  • Documentation: Maintain vessel topology and software/hardware inventory records.

Cyber Secure Class Notation

DNV’s Cyber secure class notation offers third-party verification of a vessel’s cyber resilience across people, processes, and technology. It aligns with IMO and IACS requirements and IEC standards, ensuring suitable security controls for various vessel complexities.

Did you subscribe to our daily Newsletter?

It’s Free! Click here to Subscribe

Source: DNV