CRIBB Cyber Security is the cyber security arm of TheICEway, an ecosystem of companies that was created to provide clients with an effective, end-to-end digital solution.
Just recently we announced the arrival of our brand new solution aimed at the maritime industry.
Over the past few years there has been an influx of cyber-threats against shipping and the cruise industry, with attackers viewing maritime as being an easy target due to a (relative) lack of focus on cyber security as well as a distinct lack of guidance and frameworks in place covering cyber security issues in maritime. With vessels becoming increasingly more digitised and the World’s dependence on technology seemingly gaining more and more traction, it has become one of the most important areas of focus for us here at CRIBB this year.
For many years we have prided ourselves on offering end-to-end cyber resilience solutions to clients in cruise, travel and healthcare, and as an official certification body backed by the UK Government we are completely dedicated to working alongside companies looking to improve their security and compliance levels.
CMCA for Cruise
This year BIMCO, co-authors of 2016’s “Industry Guidelines on cyber security onboard ships” along with CLIA, for which TheICEWay is the current chair of the CTI*, have played a very active role at the International Maritime Organisation (IMO).
This has resulted in a host of maritime-related companies taking a much more hands-on approach with cyber security.
*This is a specific group within CLIA for when Cruise Line Executives and Technical CLIA Executive partners are establishing IT strategy for the Cruise industry.
The Guidelines include clear points that these maritime companies should focus on, including:
- Comprehensive staff training
- Safety Management Systems that strongly feature cyber risk management, with related processes requiring constant (re-)evaluation
- Complete alignment on policies, business and technological approaches that are designed to manage the risks
Our CRIBB Maritime Cyber Assurance solution was designed specifically to follow these guidelines and provide a framework that would enable companies to implement them based on the ISO27001 security standard and UK government-backed Cyber Essentials framework and tools. Those clients who have already turned to us are going to benefit hugely:
- CRIBB will inform all company employees of all changes, offering clear definition on their roles moving forward and providing the relevant training
- CRIBB will help companies to (re-)define their policy for data protection, identifying that data being processed is done so on a lawful basis
- CRIBB will ensure that they implement robust procedures for data subject access requests.
And that doesn’t go much further than scratching the surface…
The Guidelines set out deadline dates for 2021 but we urge you to take action now, with our very own Patrick Carolan, Technical Director (Certification Auditor & International DPO) for CRIBB Cyber Security, a leading voice:
“The impact of technology on our day-to-day lives is something that is ever-growing. Today, malicious software is rife and cyber security, although once a secondary thought, is now very much an urgent requirement particularly in the cruise and cargo industry. It is definitely time to abandon that laissez-faire attitude in maritime and tackle cyber-security head-on today. “
Contact us today and speak with one of our experts to learn how you can not only achieve the minimum level of compliance but go much, much further, with CMCA.
CMCA – A huge step in the right direction NOW
CMCA is recognised by the IASME Consortium and is an affordable alternative to ISO27001. It is a unique solution that was designed to help clients increase their protection whilst improving their defences. The solution offers an assessment on data protection readiness, with the goal being to ensure as high a level of compliance as possible.
It is an unfortunate fact but maritime / cruise / cargo are vulnerable areas being targeted more and more, which is exactly why we have taken the steps to create the CMCA solution. It makes things simple, and with no straightforward solutions available out there it is easy to see why clients are already calling us for more information.
BIMCO – Baltic and International Maritime Council; the largest of the international shipping associations representing ship owners
IASME – IASME Governance is an Information Assurance standard that aims to help improve the cyber-security of small and medium-sized enterprises (SMEs)
ISO27001 – international standard intended to help organisations utilise best practice when managing their information security processes.
TheICEway – An ecosystem of companies comprising of:
- ICE Technology Services (Managed Services & Consultancy)
- CRIBB Cyber Security (as above)
- AI / VR Labs
- ICE Rapid Development