Kick Start your Cyber Security

Whilst large scale incidents such as this get the headlines, many smaller incidents occur. Disruption to business operations can be severe and costly.

Recognising the risk of cyber threats to shipping the International  Maritime Organisation (IMO) has adopted resolution MSC.428(98) MARITIME CYBER RISK MANGEMENT IN SAFETY MANAGEMENT SYSTEMS. This resolution affirms that an approved safety management system should take into account cyber risk management in accordance with the objectives and requirements of the ISM Code.

The resolution encourages cyber risks to be properly addressed in a vessels safety management system no later than the first annual verification of the company’s DOC after 1^st of January 2021.

North has partnered with HudsonCyber to provide confidential assistance to members seeking to assess their organisation’s cyber security capabilities. The assistance includes free access to level 1 of Hudson’s HACyberLogix platform along with a series of supporting webinars.

Why act now?

The IMO has stated that cyber security on vessels must be included in the safety management system (SMS) from January 2021. In order to meet this requirement, it is important to plan the changes well in advance of the 2021 deadline. The changes required may be both time consuming, and complex. This member benefit will help North members meet their regulatory obligations and reduce cyber risk in their organisation.

What is HACyberLogix?

HACyberLogix is a secure, cloud-based program designed specifically for the global shipping industry. It allows shipping companies to:

1. Assess their organisation’s cyber security capabilities.
2. Identify cyber security vulnerabilities.
3. Receive specific guidance for supporting the implementation, continuous improvement, and long-term sustainability of a cyber security program supporting all shore-based and shipboard operating environments.

By taking a maturity model approach, HACyberLogix will enable North’s Members to assess and benchmark their cybersecurity practices.

Will it help achieve IMO 2021 compliance?

Yes.

The HACyberLogix methodology integrates industry-leading cybersecurity standards, frameworks, and standardized practices with key elements of the IMO’s International Ship and Port Security Code and the International Safety Management Code.

HACyberLogix empowers decision-makers to rapidly and cost-effectively implement and sustain a cyber risk management framework compliant with the IMO’s Guidelines on Maritime Cyber Risk Management (MSC-FAL.1/Cir.3).  It also positions them to comply with Resolution MSC.428 (98), Maritime Cyber Risk Management Systems, which affirms incorporating cyber risk management efforts into approved Safety Management Systems in accordance with the objectives and requirements of the ISM Code.

What is included?

• Free access to HACyberLogix for a 120-day period .
• Each Member organisation will be granted access to the HACyberLogix application and shall be able to download a summary Report following completion.
• Free access to a series of Webinars explaining Cyberlogix.

Each session will be hosted between 0800 – 1000 hrs. EDT and will be available for viewing if you cannot participate live.

Date                                      Activity Description / Subject Areas

Monday, February 24     Registration, Introductions and Orientation.

Monday, March 2            Cyber Risk Mgmt., Change Mgmt., Workforce Training, and Physical Security.

Monday, March 9            Incident Response, Situational Awareness, Commercial, and Information Sharing.

Monday, March 16          Threat and Vulnerability Mgmt., ICT, Cyber Program Mgmt., and Governance.

Monday, March 23          Wash up and housekeeping.

The webinar workshops will facilitate a baseline maturity level assessment of each participating member’s organizational cybersecurity capabilities.

Time Limited Offer

This offer is time limited – you must register by Monday 24 February 2020 to be eligible. Use it or lose it!

How do I register?

Members interested in participating in this series can contact Dave Patterson/ Gareth Ferguson at loss.prevention@nepia.com at North.

What if I want full system access after completing the workshop series?

Members interested in gaining full access to the HACyberLogix application can at any time engage HudsonCyber directly at reduced rates.  HudsonCyber experts are available to provide advisory support for members seeking supplemental assistance in updating their Safety Management Systems.