Cybersecurity Risk Management Guidelines for the Maritime Industry

Pratt’s Privacy & Cybersecurity Law Report

In dealing with several public cyber attacks and significant financial losses, the summer of 2017 was a transformative one for the maritime industry. Cyber attacks are real, and the maritime industry is vulnerable. The authors of this article discuss the International Maritime Organization’s Maritime Cyber Risk Management in Safety Management Systems resolution, the second edition of The Guidelines on Cyber Security Onboard Ships, and the importance of cyber insurance in managing risk.

The summer of 2017 was noteworthy for developments in maritime cybersecurity and cyber risk management. Major global cyber attacks from the WannaCry attack to the NotPetya attack, including mass global positioning system (‘‘GPS’’) spoofing attacks in the Black Sea, have significantly affected the maritime industry, leaving no doubt of the importance of cybersecurity and cyber risk management. While the maritime industry remains largely unregulated in this area, the U.S. Coast Guard (‘‘USCG’’), the International Maritime Organization (‘‘IMO’’), and various industry working groups continue to provide guidance to the industry on cyber risk management, creating a new standard of care and practice in the maritime industry.

To read the full article, please click here.

“Cybersecurity Risk Management Guidelines for the Maritime Industry,” by Kate B. Belmont and Jared Zola was published in the January 2018 edition of Pratt’s Privacy & Cybersecurity Law Report (Vol. 4, No. 1), an A.S. Pratt Publication, LexisNexis. Reprinted with permission.

This article was first published in the October 2017 edition of Mainbrace, Blank Rome’s quarterly maritime newsletter.