Ports and Terminals Cyber Security
Cyber Risk Management for MTSA-Regulated Facilities
Defend Your Critical Assets and Operations
The U.S. Coast Guard (USCG) has issued the Navigation and Vessel Inspection Circular (NVIC) 01-20 calling for increased cyber security and cyber risk management controls across maritime facilities regulated under the 33 CFR 105 code of federal regulations.
ABS Group's Cyber Security team can help your facility navigate and conform to the standards and guidance set forth in this NVIC. In addition, we can help facility owners and operators understand how to apply the National Institute of Standards and Technology (NIST) Cyber Security Framework to establish a resilient cyber security program within a Maritime Transportation Security Act (MTSA) regulated facility. Our team of experienced Cyber Security engineers and regulatory advisors are qualified to assist you on the path to compliance.
How to Comply with U.S. Coast Guard Cyber Security Requirements
Given that maritime facilities operate directly in the middle of the supply chain, a persistent cyber attack could result in significant financial losses—not only to the facility itself but to its upstream and downstream customers. Implementing a solid cyber security program is critical to demonstrating proper due diligence.
Cyber risk management varies greatly from facility to facility based on the size and complexity of each facility's cyber systems.
The U.S. Coast Guard makes clear that facilities should conduct effective cyber security assessments. A properly performed cyber security assessment is a powerful tool to reduce service disruption and threats to employee safety and security that just makes good business sense. ABS Group has launched a range of cyber security services to help waterway facilities throughout the United States implement a cyber risk management program and meet compliance with existing MTSA regulations. Read our primer to learn more.
Understand cyber risk for MTSA compliance.
Access the full article by USCG Captain Dave Nichols (ret.) using the form below, and we will be in touch to discuss cyber security for your facility.
Building Cyber Resiliency
First-in-the-Nation Facility Security Officer Training Course
With emphasis on protecting critical information infrastructure within facilities, Facility Security Officers (FSO) have an important role in building cyber resilience and infusing cyber into an existing security program. ABS Group developed the first cyber security training course in the U.S. geared towards FSOs to establish a cyber security program at regulated facilities. Our training demystifies cyber risk for non-cyber risk professionals, providing an excellent understanding of how cyber can pose a threat to your facility, the tools used by cyber professionals to
assess risk and how cyber vulnerabilities can be addressed in an annex to your port and terminal facility security plan. Learn more about our FSO Cyber Security training courses.
How We Can Help with Port Cyber Security
Our solutions go beyond traditional assessment and consulting services to include technical cyber capability
development and management for identification, protection, defense, detection, response and recovery. Our
capabilities include installation of cyber technology and the ongoing management of cyber services, including
security monitoring, identity management and asset management.
Our comprehensive services for maritime facilities and critical infrastructure include:
- Compliance Management
- Port / Facility Cyber Risk Assessments
- Cyber Capability Buildout and Enhancement
- Defense in Depth and Breadth for Facility Security
- Delivery of a Cyber Maturity Report identifying cyber risks
- Design of Seismic Restraints for Equipment and Utility Systems
- Cyber Maturity Road Map outlining a 3- to 5-year plan for steady and doable cyber improvement
- Training Solutions for Cyber Risk Management
- Understand the NIST Cyber Security Framework
- Identify cyber risk at your facility
- Learn the difference between IT and OT and how they interact to create risk
- Evaluate cyber risk specific to your facility
- Understand how to review cyber risk maturity reports
- Apply cyber risk reduction controls using NIST Guidelines