06 Apr aeCyberSolutions Announces New Maritime Transportation Cybersecurity Assessments Services and Training
In-person, online courses and comprehensive assessments support compliance with Maritime Transportation Security Administration, International Maritime Organization, and U.S. Coast Guard requirements and directives.
GREENVILLE, S.C.–(BUSINESS WIRE)–#CyberPHA–aeCyberSolutions, the Industrial Cybersecurity division of aeSolutions, announces a series of new maritime assessment services and training to help maritime facility security officers (FSOs) ensure compliance with Maritime Transportation Security Administration (MTSA), International Maritime Organization (IMO) and U.S. Coast Guard requirements and directives.
Both the IMO and MTSA Maritime Transportation Cybersecurity Assessment services provide a comprehensive third-party cybersecurity assessment of a facility’s compliance including documentation ready for annexation into existing Facility Security Assessments (FSA) and Facility Security Plans (FSP). In the case of IMO, the service ensures compliance to the IMO MSC-FAL.1/Circ.3 guidance for addressing cyber risks at regulated facilities and for the MTSA the service ensures compliance to the corresponding US Coast Guard NVIC 01-20 guidance for addressing cyber risks at MTSA regulated facilities.
“While maritime facility security officers are responsible for compliance with cybersecurity regulations, many may not have the skills, resources, or bandwidth to conduct facility cybersecurity assessments and produce the required documentation,” said John Cusimano, Vice President of aeCyberSolutions.
“Cyber-attacks on maritime transportation infrastructure can have devastating consequences, both regionally and globally. Increasing threats, vulnerabilities in legacy systems, and additional exposure introduced by new technologies (i.e., digital transformation, Internet of Things (IoT) connectivity, cloud-based technologies, remote operations) increases the likelihood of successful attacks.”
Both services include an on-scene survey to examine and evaluate existing facility cybersecurity measures, procedures, and operations. Additionally, aeSolutions will analyze the vulnerabilities found during the on-scene survey and provide recommendations to establish and prioritize the cybersecurity measures for inclusion in the facility security plan (FSP).
In addition to the new assessment services, aeCyberSolutions is also introducing a maritime FSO Cybersecurity Training program. Developed and instructed by experienced maritime cybersecurity experts and offered in-person or online, the training course covers cybersecurity fundamentals for maritime FSOs. Participants also will be instructed on relevant regulatory requirements, such as those established by MTSA, the U.S. Coast Guard, and the International Maritime Organization (IMO).
Additionally, course participants will learn cybersecurity principles and the “jargon” needed to communicate with internal and external cybersecurity consultants, making them better prepared to specify the services required to meet the intent of the regulations and standards. Likewise, participants will learn how to interpret the findings from a cybersecurity assessment and use those to develop a cybersecurity plan that can be annexed into the existing facility security plan.
Please visit aeCyberSolutions’ Maritime OT Cybersecurity webpage, https://www.aesolutions.com/maritime, for more details.
aeCyberSolutions, the Industrial Cybersecurity division of aeSolutions, exclusively provides industrial cybersecurity services including risk assessments, program development, implementation, support, and training to clients in oil and gas, chemicals, maritime, water, industrial gases, and other process industries. A leader in the intersection of cybersecurity and process safety, aeCyberSolutions helps clients identify and address cybersecurity risks in a manner that is consistent with the engineering methods already in place for process safety risk management. They do so by leveraging existing information and practices while presenting a single, consistent expression of risk to senior management. The aeCyberSolutions team is exclusively staffed with personnel who have strong industrial automation backgrounds and general IT and IT security backgrounds and credentials. This combination of IT and Operational Technology (OT) expertise is essential for working in the field of industrial cybersecurity. aeCyberSolutions is based in Greenville, SC. For more information, visit www.aesolutions.com/aecyberpha-facilitation-suite, www.aeCyberSolutions.com, or follow @aesolns.
Kari Walker for aeCyberSolutions