ENISA Tackles Maritime Sector ChallengesNew Report Offers Recommendations for Risks
Maritime cybersecurity awareness is currently low, to non-existent, says the European Network and Information Security Agency in a report on security challenges in the maritime sector.
"This report positions maritime cybersecurity as a logical and crucial next step in the global protection efforts of ICT (information and communication technologies) infrastructure," says ENISA Executive Director Udo Helmbrecht.
ENISA recommends that member states undertake targeted maritime sector awareness raising campaigns and cybersecurity training of shipping companies, port authorities and national cybersecurity offices.
Ninety percent of the EU's external trade and more than 40 percent of its internal trade take place by maritime routes. "Consequently," the report said, "securing the maritime sector's critical infrastructure and the movement of vital goods, e.g. food and health supplies, is a priority area for Europe."
ENISA also recommends:
- "Security by design" for all critical maritime ICT components, since ICT components are complex and it's a major challenge to ensure adequate cybersecurity;
- A holistic, risk-based approach; assessment of maritime specific byer risks, as well as identification of all critical assets within this sector;
- Developing international and EU policies in this sector, since maritime governance is fragmented between different levels: international, European, national. The International Maritime Organization and the EU Commission should work together on this initiative;
- Better information and exchange and statistics and cybersecurity to help insurers to improve their actuarial models and reduce risks.