USCG: Cargo disruption a reminder that cyber risks are real

The US Coast Guard is actively monitoring and helping to mitigate the consequences of recent ransom ware attacks that have impacted cargo movement through several U.S. port facilities, according to Paul Thomas, assistant commandant for prevention policy. Mr Thomas informed that USCG’s local operational commanders, in cooperation with federal, state and local agencies, facilitate recovery efforts at port facilities, in order to ensure safe and secure port operations.

On the occasion of the intentional attack which affected port facilities, USCG stresses that the outcomes are a reminder of the importance of cyber risk management (CRM) in the Marine Transportation System (MTS) globally. As such, the Coast Guard aims to continue improving cyber awareness and address governance throughout the MTS. Preparing for cyber incidents must continue to be a unified effort of the maritime industry and government agencies.

To this end, USCG looks now to the critical components of governance needed to mitigate cyber risk. According to Mr Thomas, this includes understanding the interconnectivity of systems, identifying personnel responsible for CRM, installing corporate structure to address CRM training requirements, and implementing corporate and shipboard procedures for operations and maintenance of critical cyber systems, particularly those in control of critical security, safety, environmental and business continuity functions.

Wherever possible, such systems should have fail-safes and manual control options to limit the impacts of possible cyber disruptions. Maintaining current backups of critical data in a cyber isolated location can also reduce vulnerability, he added.

“The Coast Guard and our partners in the federal, state, and local government as well as maritime industry will continue to work together to mitigate the impacts of the current cyber attacks and reduce vulnerability to similar incidents in the future. I encourage you to work through your local Area Maritime Security Committees, which have proven to be an effective established channel of communication that ensure widest dissemination of critical information during an actual or potential disruption of port operations”, Mr Thomas concluded.