Maritime Cyber Security

Maritime Cyber Security is the protection of onboard and onshore devices and systems from unpermitted or malicious intrusions. Cyber Security encompasses all possible vectors of access to these systems, including through network connections, on location through console access or through intrinsic weaknesses present in the systems themselves.

As the maritime industry becomes more reliant on onboard and onshore systems to complete operations, the risks of a cyber incident become ever more likely. In fact, the most common recommendation about the danger of a cyber incident occurring is usually to assume “when” not “if”. The interconnectedness of these systems also means the cyber incidents present a greater danger to the safe operation of your business. Malicious intrusions to these systems can put your vessel, crew, cargo and all at risk. Due to this increasing threat of cyber incidents, maritime governing bodies have released guidelines and requirements for best practice within the industry. These recommendations are increasingly becoming part of legislation and compliance will often be considered when levying for contracts or applying for insurance.

At Hedgehog Security we offer a wide range of maritime Cyber Security services which will help you to review, improve and strengthen your Cyber Security. Our services include:

Audits: a full review of your Cyber Security setup to identify weaknesses and opportunities using the Maritime Cyber Security Baseline for vessels and IASME Cyber Assured for shoreside operations.

Testing: applied testing of how robust your system is against threats, including using tactics that real-world hackers use.

Training: providing the knowledge and understanding of cyber risks and best practices for your staff and crew.

Implementation: supporting the implementation of improvements to your Cyber Security, remotely or onboard.

Design: supporting the introduction or update of existing systems to ensure that their Cyber Security is strong.

We are a team with knowledge and experience in both maritime operations and Cyber Security, allowing us to provide industry specific services. ALL of our consultants working on maritime Cyber Security engagements are STCW95 trained and the majority to the team hold commercial licenses and sail in their spare time. Our services have been designed to minimise their impact on your operations, so that you can continue to operate as normal while improving your Cyber Security. If you would like to learn more about any of the services we offer, or if you would like to start improving your maritime Cyber Security, please get in touch with our team today.

In June 2017 the International Maritime Organization (IMO) laid out its “Guidelines on Maritime Cyber Risk Management”, which you can find in full here.

From the 1st January 2021 onwards shipowners and managers are required to build cyber risk management into their ship safety initiatives, or risk having their ships detained.

To help you get started and make sure that you are passing the IMO guidelines, we have created a checklist to provide you with an overview of the risk areas highlighted by the IMO.

We’ve included some of the top risks to look out for, as well as initial steps you can take to address them. Click the buttons below to download our IMO checklist, or read on to find out more about what the IMO have recommended.es Here