Navigation

Industry publishes new and improved cyber security guidelines

By Lars Lange, IUMI Secretary General

The fourth edition of the industry cyber risk management guidelines, “Guidelines on Cyber Security Onboard Ships”, was published in December 2020 and sets the foundation for further improvements and refinement of companies’ cyber security risk assessments.

Version 4 of the guidelines have been published at a time when shipowners and ship managers are faced with a requirement to implement cyber risk management in their safety management systems (SMS) by the time of their first Document of Compliance audit after 1 January 2021. While the previous version (version 3 dated November 2018) offered the necessary guidance for the initial work of implementing cyber risk management in the SMS, the new version contains several improvements.

The new guidelines contain general updates as to best practices in the field of cyber risk management, and as a key feature, includes a section with improved guidance on the concept of risk and risk management. The improved risk model takes into consideration the threat as the product of capability, opportunity, and intent, and explains the likelihood of a cyber incident as the product of vulnerability and threat. Thus, the improved risk model offers explanation as to why still relatively few safety-related incidents have unfolded in the maritime industry, but also as to why this should not be misinterpreted and make shipping companies lower their guard.

The fourth edition of the guidelines were produced in cooperation with a number of maritime industry organisations: BIMCO, Chamber of Shipping of America, Digital Containership Association, International Association of Dry Cargo Shipowners (INTERCARGO), Interferry, International Chamber of Shipping (ICS), INTERMANAGER, International Association of Independent Tanker Owners (INTERTANKO), International Marine Contractors’ Association (IMCA), International Union of Marine Insurance (IUMI), Oil Companies International Marine Forum (OCIMF), Superyacht Builders Association (Sybass), and World Shipping Council (WSC).

To view the latest guidelines please click HERE

Back