Bridge Watch: US Coast Guard Cybersecurity Facilities Guidance

In this week's Bridge Watch, Corey Ranslem, CEO Dryad Global talks about the United States Coast Guard (USCG) cybsersecurity guidance on facilities in the maritime transportation system.

The United States Coast Guard (USCG) has produced several guidance documents related to cybersecurity for facilities in the maritime transportation system. Some of these guidance documents include:

1. Cybersecurity Assessment and Annex Guide (CAAG): A comprehensive guide for facilities to conduct cybersecurity assessments, identify vulnerabilities and threats, and develop an annex to address them.
2. Maritime Cybersecurity Checklist: A tool for facilities to use to assess their cybersecurity posture and identify areas for improvement.
3. Guidance on Compliance with the Maritime Transportation Security Act (MTSA) Cybersecurity Requirements: Information on how facilities can comply with the cybersecurity requirements of the MTSA, including best practices for risk management and incident response.
4. Notice to Industry and Stakeholders on Cybersecurity Risks and Recommended Mitigation Measures: A notice issued by the USCG that provides information on the latest cybersecurity risks and recommended mitigation measures for facilities in the maritime transportation system.
5. Guidance for Implementing the International Ship and Port Facility Security (ISPS) Code Cybersecurity Measures: Information on how facilities can implement the cybersecurity measures required by the ISPS Code, including best practices for risk management and incident response.

These guidance documents provide facilities with valuable information on how to improve their cybersecurity posture and reduce the risk of a successful cyber attack. By following the guidance and best practices outlined in these documents, facilities can better protect themselves and the maritime transportation system from cyber threats.

The United States Coast Guard (USCG) has produced a job aide on cybersecurity for its personnel. The job aide is intended to provide guidance and best practices for USCG personnel to follow when assessing the cybersecurity posture of vessels and facilities in the maritime transportation system.

The job aide covers various aspects of cybersecurity, including risk management, incident response, and the implementation of security controls. It also includes a set of questions that USCG personnel can ask when conducting a cybersecurity assessment, as well as guidance on how to document the results of the assessment.

The USCG job aide on cybersecurity is an important tool for ensuring that USCG personnel have the knowledge and skills necessary to effectively assess the cybersecurity posture of vessels and facilities in the maritime transportation system. By following the guidance and best practices outlined in the job aide, USCG personnel can better protect the maritime transportation system from cyber threats.

The shipping and maritime industries are known to be vulnerable to cyber security threats such as cyber attacks, data breaches, and theft of sensitive information. The industries heavily rely on technology and digitization, which makes them a target for cyber criminals who seek to exploit vulnerabilities in their systems.

In recent years, there have been several high-profile cyber security incidents affecting shipping and maritime transportation, such as the attack on the world's largest shipping company, Maersk, in 2017, which caused widespread disruption and cost the company hundreds of millions of dollars.

It's important for organizations in the shipping and maritime industries to take cyber security seriously and implement robust security measures to protect against potential attacks.

What is IMO 2021?

The IMO 2021 compliance for vessels cyber security is a set of guidelines established by the International Maritime Organization (IMO) to enhance the cyber security of ships and shipping companies. These guidelines aim to reduce the risk of cyber attacks and ensure the safe and secure operation of ships.

The IMO 2021 compliance outlines several key requirements for vessels, including:

1. Cyber risk management: Shipping companies must develop and implement a comprehensive cyber risk management plan that addresses all potential risks to their operations.
2. Personnel training: Companies must provide regular training to their personnel on how to identify, respond to, and prevent cyber security incidents.
3. Secure systems and networks: Companies must ensure that their systems and networks are secure and regularly updated with the latest security patches and software.
4. Incident response and reporting: Companies must have a clear incident response plan in place and must be prepared to report cyber security incidents to the relevant authorities.
5. Third-party security: Companies must assess and manage the cyber security risks associated with third-party contractors and suppliers.

The IMO 2021 compliance is an important step in ensuring the safety and security of the shipping industry, and companies are expected to adhere to these guidelines in order to maintain their operational efficiency and protect against cyber threats.

What is NAVEX 0120?

NAVEX 0120 is a notice issued by the USCG that provides guidance on the security of vessels and facilities in the maritime transportation system. The notice focuses on the implementation of the Cybersecurity and Infrastructure Security Agency (CISA) Emergency Directive 21-01, which addresses the recent SolarWinds supply chain compromise.

NAVEX 0120 provides recommendations for vessels and facilities to improve their cybersecurity posture and reduce the risk of a successful cyber attack. This includes recommendations for implementing secure configurations, applying software patches and updates, and using multi-factor authentication.

The USCG also recommends that vessels and facilities conduct a risk assessment to identify potential vulnerabilities and implement mitigation measures to reduce the risk of a cyber attack. Additionally, the USCG stresses the importance of incident response planning and having a process in place for reporting and responding to cybersecurity incidents.

NAVEX 0120 serves as a reminder of the importance of cybersecurity in the maritime transportation system and the need for vessels and facilities to take proactive measures to protect against cyber threats.

What guidance has been issued by the US Coast Guard?

The USCG Cybersecurity Assessment and Annex Guide (CAAG) is a set of guidelines and best practices for facilities in the maritime transportation system to improve their cybersecurity posture and reduce the risk of a successful cyber attack. The guide provides a comprehensive framework for conducting cybersecurity assessments and developing an annex to address identified vulnerabilities and threats.

The CAAG is designed to help facilities identify potential cybersecurity risks and implement measures to reduce the risk of a successful attack. This includes recommendations for implementing secure configurations, applying software patches and updates, and using multi-factor authentication.

The CAAG also includes guidance on incident response planning and reporting, as well as information on how to conduct a risk assessment and develop an annex to address identified vulnerabilities and threats. The annex is intended to be a living document that can be updated and revised as the facility's cybersecurity posture evolves.

The USCG's CAAG is a valuable resource for facilities in the maritime transportation system looking to improve their cybersecurity posture and reduce the risk of a successful cyber attack. By following the guidelines and best practices outlined in the guide, facilities can better protect themselves and their operations from cyber threats.

Why does the US Coast Guard inspect vessels and facilities?

The USCG inspects vessels and facilities in the maritime transportation system to ensure compliance with various federal regulations and industry standards. The inspections are designed to ensure the safety and security of the maritime transportation system, as well as protect the environment and public health.

Inspections can be conducted by USCG personnel, such as marine inspectors, or by authorized third-party organizations known as Recognized Organizations (ROs). The inspections can include both safety and security-related items, as well as environmental and operational compliance.

The scope of the inspection will vary depending on the type of vessel or facility being inspected, and can include a review of the vessel's or facility's safety equipment, security measures, crew training and qualifications, and environmental management practices.

Inspections can also include a review of the vessel's or facility's records, such as the Vessel Safety Management System (VSMS) and the security plan. The USCG will also verify that the vessel or facility is in compliance with federal regulations and industry standards, such as the International Maritime Organization (IMO) Convention for the Safety of Life at Sea (SOLAS) and the International Ship and Port Facility Security (ISPS) Code.

Inspections can be conducted on a regular basis, such as annually or biennially, or they can be conducted in response to a specific incident or complaint. If a vessel or facility is found to be non-compliant during an inspection, the USCG may take enforcement action, which can range from issuing a notice of violation to taking legal action.