Call
Ask an Expert
Tel: +1-281-673-2800
Fax: +1-281-673-2931
Find an Office
Email
Email Us

Cybersecurity for MTSA-Regulated Facilities

Ports and Terminals Cyber Security

Managing Cyber Threats at MTSA-Regulated Facilities

The U.S. Coast Guard (USCG) has issued the Navigation and Vessel Inspection Circular (NVIC) 01-20 calling for increased cyber security and cyber risk management controls across maritime facilities regulated under the 33 CFR 105 code of federal regulations.

ABS Group's Cybersecurity team can help your facility navigate and conform to the standards and guidance set forth in this NVIC. In addition, we can help facility owners and operators understand how to apply the National Institute of Standards and Technology (NIST) Cybersecurity Framework to establish a resilient cyber security program within a Maritime Transportation Security Act (MTSA) regulated facility. Our team of experienced Cyber Security engineers and regulatory advisors are qualified to assist you on the path to compliance. 

Learn more about our services for MTSA-regulated facilities.


How to Comply with U.S. Coast Guard Cyber Security Requirements

Given that maritime facilities operate directly in the middle of the supply chain, a persistent cyber attack could result in significant financial losses—not only to the facility itself but to its upstream and downstream customers. Implementing a solid cyber security program is critical to demonstrating proper due diligence.

Cyber risk management varies greatly from facility to facility based on the size and complexity of each facility's cyber systems.

The U.S. Coast Guard makes clear that facilities should conduct effective cyber security assessments. A properly performed cyber security assessment is a powerful tool to reduce service disruption and threats to employee safety and security that just makes good business sense.

ABS Group has launched a range of cyber security services to help waterway facilities throughout the United States implement a cyber risk management program and meet compliance with existing MTSA regulations. Read our primer to learn more.

Understand cyber risk for MTSA compliance.

Access the full article by USCG Captain Dave Nichols (ret.) using the form below, and we will be in touch to discuss cyber security for your facility.


Address Cyber Risk in Your Facility Security Plan

As further outlined in the Coast Guard's NVIC 01-20 cybersecurity guidelines, facilities on the Outer Continental Shelf must address cyber risk management in their facility security plans to meet the existing Maritime Transportation Security Act (MTSA) requirements outlined by Congress.

MTSA-regulated facilities must assess, identify and develop a set of risk-based security measures to address cyber risk and demonstrate that their facilities have a cybersecurity plan in place that mitigates the risk of cyber attacks on critical infrastructure.

Cybersecurity Solutions and Services 

 Self-Service Toolkit
 

 FSA-Cyber Guidance

  • USCG NVIC 01-20 Readiness Checklist

  • USCG NVIC 01-20 Guidance Primer

 Roadmap Template

  • FSA-Cyber Procedure

  • Mitigation Strategy and Roadmap Template

 FSP Annex Template

  • FSP Annex Integration Procedures

  • FSP Annex and Roadmap Template
 
 
 Full-Service Support
 

 FSA-Cyber Risk Assessment

  • FSA-Cyber Vulnerability Assessment Report

 Cyber Training

  • 8-hour FSO targeted training

  • 4-hour FSO/non-FSO training
  • 2-hour executive workshop

 FSP Annex Integration and Roadmap

  • FSA-Cyber Vulnerability Assessment Report

  • Implementation Strategy and Roadmap
  • FSP Annex Development and Deployment
  • Integration of Cyber into Facility Emergency Response Plan
  • 90-day Drill Templates (integrating cyber into physical)

 Cyber Capability Enhancements

 Choose from the following capabilities:

  • eLearning

  • Incident Command Structure (ICS) Integration
  • Asset Management
  • Security Information and Event Management (SIEM)
  • Intrusion Detection/Security Monitoring
 

Building Cyber Resiliency at Your Facility

First-in-the-Nation Facility Security Officer Training Course

With emphasis on protecting critical information infrastructure within facilities, Facility Security Officers (FSO) have an important role in building cyber resilience and infusing cyber into an existing security program. ABS Group developed the first cybersecurity training course in the U.S. geared towards FSOs to establish a cybersecurity program at regulated facilities. Our training demystifies cyber risk for non-cyber risk professionals, providing an excellent understanding of how cyber can pose a threat to your facility, the tools used by cyber professionals to
assess risk and how cyber vulnerabilities can be addressed in an annex to your port and terminal facility security plan. Learn more about our FSO Cyber Security training course.

Hear more insights from Brian Shajari, active Coast Guard veteran and cybersecurity advisor.


Risk Matters X.0 Podcast: Cyber Risk Series

 

Emergency Response and Facility Security Perspectives: "In emergency management, does cyber security have a role? Absolutely. The real question is will you realize it soon enough before you have an emergency inside of your emergency." After responding to eight major Gulf Coast hurricanes together as facility security officers, Bryan Markland of Lucite International shares current cyber insights with intelligence professional Brian Shajari. Revisit our first episode in the Cyber Risk Series to hear how the U.S. Coast Guard is responding to cyber threats and keeping the maritime and offshore industries informed.

Listen to Podcast

Back to top