New training programs
From 09.11.2020 in our center you can get training in new programs
- CYBER SECURITY IN THE MARINE INDUSTRY;
- CYBER SECURITY ON SHIPS
The introduction of new programs is due to the global trend towards the progressive digitalization of the economy, which fully applies to maritime transport.
IMO classifies the following ship systems as the most vulnerable
• navigation bridge systems;
• cargo handling and management systems;
• control systems for motors, machines and power supply;
• access control systems;
• passenger service and management systems;
• public Internet networks of the vessel intended for use by passengers;
• administrative systems and networks;
• communication systems.
Based on the foregoing, we can conclude that the ship is extremely vulnerable to a planned cyber attack.
Ports also need protection from information threats.
The programs are developed in accordance with the “Recommendations for Cyber Risk Management in the Maritime Industry” MSC-FAL Circular (MSC-FAL./Circ.3)
These programs also take into account the “Recommendations on cybersecurity on ships” (Version 2.0), “Cyber risk management in the security management systems of the maritime industry” Resolution (MSC) MSC.428 (98) Appendix No. 10 of the report on the work of the MSC at the 98th session – document MSC 98/23 / Add.1
The IMO Maritime Safety Committee in June 2017 adopted Resolution MSC.428 (98) – Management of maritime cyber risks in safety management systems. The resolution calls on administrations to ensure that cyber risks are adequately addressed in existing security management systems no later than the first annual review of the company’s document of compliance after January 1, 2021.
The International Organization for Standardization and the International Electrotechnical Commission have developed and published the information technology standard 27001.
The International Maritime Organization recommended the Guidelines for Cybersecurity in Ships, developed by leading maritime transport associations, and the US National Institute of Standards and Technology Framework for Improving Critical Cybersecurity Infrastructure.
On January 1, 2018, the Federal Law of July 26, 2017 No. 187-FZ “On the Security of the Critical Information Infrastructure of the Russian Federation” (FZ-187) entered into force. FZ-187 classifies information systems, information and telecommunication networks, automated control systems of critical information infrastructure subjects as objects of critical information infrastructure.