USCG Blog – Cyber Security and the Safety Management System
06/30/2017
A recent post on the USCG Blog for Maritime Professionals announced the IMO resolution on cyber risk management that was approved at the 98th session of the Maritime Safety Committee.
Excerpt “The resolution affirms that approved safety management systems should take cyber risk management into account in accordance with the objectives and requirements of the International Safety Management Code. Drawing upon the recommendations published in MSC.1/Circ.1526 Guidelines on maritime cyber risk management, the resolution also reaffirmed that existing risk management practices should be used to address the operational risks associated with the growing dependence on cyber enabled systems. Through the resolution, IMO member states are encouraged to ensure cyber risks are appropriately addressed in safety management systems no later than the first annual verification of the company’s Document of Compliance after 1 January 2021. The Coast Guard will continue to work with industry partners to develop a clear and achievable path towards compliance in order to foster a resilient risk management approach towards cyber risks throughout the Marine Transportation System.”
While this resolution is specific to those operating under the International Safety Management (ISM) Code, other should take note as the trend is quickly spreading. Those participating in the Oil Companies International Marine Forum’s (OCIMF) Tanker Management and Self Assessment, Third Edition 2017 (TMSA3) will note the addition of element 13 Maritime Security. Element 13 specifically references cyber security in 13.2.3.
Click here to read the USCG blog post on Cyber Risk Management.