Evaluating cyber security aspects in the maritime industry

It has been estimated that approximately 90 percent of world trade occurs via ocean. The computerized systems and automated machines that the maritime sector relies upon are not equipped enough to meet the threats of the 21st century. With increased digitalization and automation, the maritime industry has now opened doors to vulnerabilities, with potentially devastating consequences. It has been estimated that cyber risks to the maritime sector are likely to increase in 2018 due to mandatory implementation of navigational systems. So, what maritime companies can do to increase maritime cyber security?

A cyber criminal hacked the e-services section of the website of a port in Oman in 2016 and released customer data. In July 2016, a cyber activist group targeted three maritime companies and leaked confidential documents. All such incidents reveal that the maritime sector is vulnerable to cyber attacks. With cyber threats in the maritime sector expected to increase in the coming years, it is important for organizations to be prepared.

·         Port operators and shipping companies should analyze and mitigate the vulnerabilities present in newly released software and hardware, and patch security holes promptly before integrating them into their ships or facilities. Shipping companies should use only secured communication systems such as Inmarsat Fleet Broadband for transferring voice and broadband data from ship to port facilities.

·         All companies related to the maritime sector should develop good practices for the implementation of Information Communication Technology (ICT) components that have “security by design” in order to avoid any cyber threat.

·         Maritime cyber security awareness among crew is currently low. So it is highly recommended to undertake maritime sector awareness raising campaigns and cyber security training of shipping companies, staff members, and port authorities.

·         Currently, maritime security regulations and policies consider only physical aspects of security and safety. Therefore, it is essential that policy makers should now add cyber security aspects to their new regulations for minimizing future cyber attacks.

All companies in the maritime industry should start acting on these measures needed to ensure greater cyber security protections. These measures, such as maritime cyber security awareness, training, better regulations and using secured fleet broadband systems for communication, will also help them to avoid catastrophic losses and becoming another victim of cyber crime.