The IACS E26 and E27 cyber requirements are mandatory for new ships contracted for construction, and recommended for existing fleets.
The maritime industry is undergoing a significant transformation, characterized by increasing digitalization and interconnectedness. While these advancements offer substantial benefits in efficiency and operational capability, they concurrently expose vessel networks to a new generation of sophisticated cyber threats. The potential for cyber incidents to disrupt operations, compromise safety and cause environmental damage is no longer a theoretical concern but an escalating reality. This evolving risk landscape has prompted proactive measures from industry bodies to bolster maritime cyber resilience.
Recent updates to key cybersecurity regulations from the International Association of Classification Societies (IACS), are reshaping how to address cybersecurity onboard ships.
IACS E26 regulations establish cybersecurity requirements for vessels and shipbuilding processes. These standards ensure that vessels are designed, constructed, and operated with robust cybersecurity measures to protect onboard systems from cyber threats.
IACS E27 regulations address cyber resilience of individual systems and equipment installed on the ship, with particular emphasis on the security of third-party equipment and systems.
Vessel Owners
Owners and operators of vessels that must meet IACS cybersecurity standards.
Shipyards
Builders and retrofitters responsible for integrating cybersecurity vessel design and construction.
Manufacturers
Supply chain and equipment manufacturers of component systems and software.
The IACS E26 and E27 regulations are mandatory for new ships contracted for construction on or after July 1, 2024, and strongly recommended for existing fleets to improve cyber security preparedness.
Cyber Risk Consulting Services
ABS Consulting is a leading provider of cybersecurity consulting, integration, and risk management services for the maritime industry. We recognize the unique challenges shipyards, designers, and suppliers face in meeting class requirements during vessel development and construction.
Whether you’re in the initial concept and design stages or integrating cybersecurity into ongoing projects, our team supports you in embedding cyber controls and best practices throughout the shipbuilding process in order to meet class requirements. We work with you to identify the compliance requirements and security measures that impact your operations, establishing a clear framework to track progress and demonstrate results from a shipbuilding and supply chain perspective.
Classification Services & Equipment and Systems Certification
ABS, one of the world’s leading classification societies, provides guidance and verification services to support vessels and shipbuilding projects in meeting IACS E26 and E27 cybersecurity requirements. ABS works closely with shipyards, designers, and suppliers to assess compliance, review documentation, and certify that maritime stakeholders comply with the latest IACS cyber regulations. ABS solutions include:
Non-compliance with these regulations can result in operational disruptions, reputational damage and financial losses due to cyber incidents and regulatory penalties.
By proactively addressing these regulations, shipyards, designers and suppliers can:
The IACS E26 and E27 regulations are mandatory for new ships contracted for construction on or after July 1, 2024, and are strongly recommended for existing fleets to improve cyber security preparedness.
Now is the time to take action and implement safeguards to protect ships against cyber incidents and maximize continuity of shipping operations. ABS Consulting’s marine specialists are recognized globally in the shipping community as trusted safety and risk management advisors. We support shipowners, designers, shipyards, integrators and suppliers implement controls in the shipbuilding process to manage cyber risk and meet regulatory compliance.
