testata inforMARE
Cerca
04 July 2025 - Year XXIX
Independent journal on economy and transport policy
06:41 GMT+2
LinnkedInTwitterFacebook


CENTRO INTERNAZIONALE STUDI CONTAINERSANNO XXXVIII - Numero LUGLIO 2020
CYBER SECURITY

TURNING IMO2021 INTO AN OPPORTUNITY INSTEAD OF A BURDEN

Being a shipping IT professional can be frustrating. You recognise the need to invest in further cybersecurity, but your management team still treat it as a "compliance problem". But perhaps this is a result of the way cybersecurity has been presented to leadership. The dialogue needs to change. IMO 2021 could offer a unique opportunity to reposition cybersecurity as an important enabler of the wider business objectives.

At our recent virtual conference - CyberSecure at Sea - we asked ~120 shipping IT professionals what was holding them back from rolling out cyber security controls. ~50% pointed toward the struggle with providing their management teams the confidence that they are spending wisely on cyber security or that investing in additional resources to manage cyber risk is required at all. It is clear there is a misalignment between what IT professionals know is needed and what leadership believes is the risk.

Management teams in shipping believe cyber security is mainly a "compliance problem"

This is frustrating for the IT professional. But it isn't really a surprise.

Management's main concerns are driving up revenue and driving down cost. Maximise chartering at minimal expense. To run a tight ship, any investment that cannot visibly drive either of these twin goals is deprioritised. If the link is not clear, they don't believe it or they don't understand it, investing in it is a luxury. So the responsibility falls on the CIO or IT manager to help leadership understand the need and urgency.

But shipping IT professionals still find themselves stuck in a dialogue with management about how to do the bare minimum in order to comply with IMO 2021, instead of how to take steps to properly cybersecure.

From our discussions with shipping IT professionals, we find only 20% are actively engaging with their management to align cybersecurity strategy. In over 65% of cases, the dialogue is either focused purely on compliance or related to purchasing specific cybersecurity solutions. This means that for every 100 interactions that IT professionals have with their management team, 65 of them are either discussing compliance or a point solution.

Interestingly, none of the shipping IT professionals we speak to have a relationship with management where they agree to an annual budget and make the day to day decisions around cyber-security strategy and tactics. So management are making decisions on what cybersecurity controls to put in place on a case by case basis, rather than the IT professionals.

This is why cyber security in shipping is still commonly treated as a "compliance problem" - it is being presented as one.

This mindset is based on false assumptions

The most dangerous one is that shipping is not a targeted sector. If you still don't believe the threat landscape is shifting, then just look at the data - just within the first 5 months of 2020, there were public announcements of cyber attacks on MSC, Anglo Eastern, OSM and twice on Toll Group. While the amount of losses in revenue or remediation costs remain guarded secrets, they have all admitted to significant interruptions in operations.

Another false assumption is that we can achieve vessel digitalisation and worry about cyber security later. The evidence is clear that this simply isn't the case. Just to cite one example, a common assumption is that you can maintain separation of the business, crew and OT networks. So it should be impossible for an attacker to compromise a crew asset, then use that foothold to attack a critical business workstation or OT system.

In reality, in ~80% of vessels CyberOwl has deployed on, we find assets connected to the business network that the IT manager knows nothing about. They haven't identified them in their inventory, have no idea of their nature, did not sanction a connection, had no way of controlling or disconnecting them remotely. Sometimes it is not just 1 or 2 such assets, but 10s of them. In several cases, these unauthorised connections were later discovered to be OT devices linked to a bridge system, the engine room or auxiliary power system.

The relationship between IT and management needs to change. IMO 2021 is an opportunity to get "air time".

IMO 2021 presents a window of opportunity. Management teams have no choice but to make sure their fleet has a cyber risk management system that complies. Instead of approaching the dialogue as a compliance issue, this is the opportunity to frame cyber security as a business issue - an enabler to deliver overall business priorities. Whether this is business efficiency, vessel performance optimisation, remote control and management or crew welfare.

There are useful examples in recent history of leveraging compliance to strengthen overall cyber risk management. According to analysis by Marsh, companies successfully used GDPR as a catalyst, with 78% investing more in cyber security en route to GDPR compliance. A key finding in a 2019 UK government report was that as a result of GDPR, there was a significant increase in the number of businesses putting in place quarterly updates with senior management on cybersecurity, intensifying cybersecurity training and enhancing cybersecurity policies. Essentially, where the opportunity was taken, GDPR had a positive effect in improving executive attention that prompted the related investments.

This window of opportunity won't last forever. Don't squander it.

So how do shipping IT professionals make the most out of IMO 2021?

Shifting the emphasis of the discussion with management is an important start. Turn the conversation from "what we need to do to comply" to "how does cybersecurity support the way we want to work going forward." For example, the need for better remote access control becomes less about the fact it is an IACS recommendation, but more because it reduces the need to get an engineer onboard the vessel.
  • Use IMO 2021 as a catalyst for working more closely with your colleagues in technical, operations and quality. Get a good understanding of their ambitions for improving performance and reducing costs. Use this knowledge to demonstrate how cybersecurity could help them achieve that securely. Link your cybersecurity initiatives with their cost-savings or revenue-gain figures.
  • Quantify the risk within the context of these wider business objectives. Help management visualise the potential loss due to a cyber attack. But make this real to your own organisation and its digitalisation ambitions, rather than using high-level industry report figures. There are various well-recognised methods for quantifying the cyber risk to an organisation. One approach we like using at CyberOwl is the FAIR methodology.
  • Define some key cybersecurity metrics to start collecting and tracking. Begin with a pragmatic, small number that won't drown your resources. At minimum, these should measure the volume of system outages, volume of cyber incidents and some aspect of usage policy abuse, misconfigurations or suspicious behaviour. Gather benchmarks on these metrics from a friendly cybersecurity advisor or a collaborative network of other shipping IT professionals. Present the trends and benchmarks to your management, clearly explaining their implications.
  • Lean on your vendors to help you inform your cybersecurity strategy. It is part of the value and service they bring to you. When you perform trials, treat it as a learning exercise, not just a procurement exercise. Clearly set out what you are trying to learn about your current cybersecurity posture, where the risks are and how you are currently managing them. Share this "list of learning points" with your vendor. They should be helping you learn, rather than just proving to you their cybersecurity product is better than the competition.
Finally, it doesn't need to be a huge transformation programme. Start small and simple. Make some changes. Measure the improvement. Share any good news and small wins. Repeat.

How are you engaging with your management on IMO 2021? Get in touch with us here if you would like help or a free consultation on how to reposition the dialogue.

hellenicshippingnews.com
SHIPPING
P&O Maritime Logistics (DP World Group) to acquire 51% of NovaAlgoma Cement Carriers
Lugano
Nova Marine Holding and Algoma Central Corporation will retain 49%
PORTS
Stable freight traffic in the ports of Genoa and Savona-Vado Ligure in May
Genoa
A decrease of -2.4% was recorded in the Ligurian capital's airport; a rise of +7.2% was recorded in the Savona airport
INDUSTRY
Consilium Safety Group Expands Presence in Türkiye and Maritime Market
Gothenburg
Ares Marine acquired
INDUSTRY
The first InnoWay freight railcars have left the Bagnoli della Rosandra plant
PROGRESS AND TECHNOLOGY
Fincantieri has opened a new Innovation Antenna in South Korea
Seoul
It is located in the heart of Seoul's technology district.
PORTS
The commissioners of various AdSPs also assume the powers attributed to the Management Committees
Rome
Provisions for the port authorities of the Ionian Sea, the Central-Northern Adriatic Sea, the Eastern Ligurian Sea and the Northern Tyrrhenian Sea
COMPANIES
Ferrara-based INCICO acquires Italiana Sistemi and focuses on transport engineering
Ferrara/Naples
It specializes in infrastructure and plant engineering in the railway and road sectors
INTERMODAL TRANSPORT
Hupac announces expansion of Duisburg-Singen shuttle with connections to Italy
Noise
Daily departures will be made
COMPANIES
The transfer of 80% of Louis-Dreyfus Armateurs' capital to InfraVia has been implemented
Suresnes/Paris
The Louis-Dreyfus family retains the remaining 20%
PORTS
Port of Genoa, green light for extension of concession to Spinelli until September 30
Genoa
Ok also to the extension to the Campostano group
EDUCATION
The National Maritime Fund has started the recognition of scholarships
Genoa
They are granted for basic training and security familiarization courses.
RAILWAY TRANSPORT
RFI and MIT sign the update to the program contract for approximately 2.1 billion
Rome
Around 500 million euros expected for the management of the railway network
SHIPYARDS
San Giorgio del Porto delivers a vessel for the bunkering of liquefied natural gas
Genoa
It was built for Genova Trasporti Marittimi
PORTS
Pisano (AdSP Liguria Orientale): the ports of La Spezia and Carrara have integrated almost perfectly
La Spezia/Bari
Extraordinary Commissioner of the Southern Adriatic Sea Port Authority appointed
PORTS
Raffaele Latrofa appointed president of the AdSP of the Central-Northern Tyrrhenian Sea
Rome
He is the deputy mayor of Pisa
SHIPYARDS
India's Mazagon Dock Shipbuilders Acquires Control of Sri Lanka's Colombo Dockyard
Mumbai
Investment of approximately 53 million dollars
PORTS
The Commissioner of the Western Ligurian Sea Port Authority has been granted the powers and prerogatives of the Management Committee
Genoa
The measure pending the restoration of the ordinary top management bodies
PORTS
The Three-Year Operational Plan 2025-2027 of the Central Adriatic Port Authority has been approved
Ancona
Favorable opinion of the Sea Resource Partnership Body
MEETINGS
The public meeting of the International Containers Studies Center will be held in Genoa on July 2nd
Genoa
It will deal with the physical transformations of the container and the digitalization of processes
ASSOCIATIONS
Andrea Ormesani is the new president of Assosped Venezia
Venice
The board of directors has been renewed. Paolo Salvaro remains general secretary
MARITIME SERVICES
Witte (ISU): In 2024, the ship salvage sector stabilized from the low of two years ago
London
INDUSTRY
Finnish Elomatic to Install Tunnel Thrusters on 11 Carnival Cruise Ships
Turku
The works will begin next autumn and will end in 2028
MEETINGS
The Assarmatori assembly will be held in Rome on July 1st
Rome
"Mediterranean against the current" the theme of the meeting
SHIPYARDS
Fincantieri has delivered the new cruise ship Viking Vesta to the American Viking
Trieste/Los Angeles
It was built in the Ancona shipyard
SAFETY & SECURITY
The Genoa Coast Guard has placed the container ship PL Germany under administrative detention
Genoa
SHIPYARDS
Italian Navy orders two new Multipurpose Combat Ships from Fincantieri
Trieste
The order to the shipbuilding company is worth 700 million euros
PORTS
MSC Group to manage cruise services in the ports of Bari and Brindisi
Bari
Ten-year concession with possibility of extension
INTERMODAL TRANSPORT
German Kombiverkehr Returns to Profit in 2024
Frankfurt am Main
The level of revenues remained unchanged at 434.6 million euros.
COMPANIES
Deltamarin to design the six new ro-pax vessels ordered by Grimaldi for the Mediterranean routes
Turku
SAILING LIST
Visual Sailing List
Departure ports
Arrival ports by:
- alphabetical order
- country
- geographical areas
LOGISTICS
The practice of subcontracting in European logistics is creating a parallel labour market where rights are not enforced
Brussels
"Sorry, We Subcontracted You" Report Presented
SHIPPING
Tomorrow Grendi will launch the group's fourth ship on routes to and from Sardinia
Milan
"Grendi Star", with a load capacity of 2,800 linear meters, will connect Marina di Carrara and Cagliari
DEFENCE
FREMM frigates operational support contract signed between Orizzonte Sistemi Navali and OCCAR
Taranto
The agreement has a total value of approximately 764 million euros
TRUCKING
Call to reform the entire driver training system in the transport sector
Rome
Seven proposals presented
NEWS
In the port of Gioia Tauro, the Guardia di Finanza soldiers seized 228 kilos of cocaine
Reggio Calabria
Two dockers arrested
PORTS
Port of Livorno, new observatory to find solutions to the problem of port congestion
Leghorn
Marilli: We will seek solutions to reach the possible revocation of the port fee
INSURANCE
Lockton PL Ferrari closed the last fiscal year with gross revenues of 34 million dollars
Genoa
Insurance premium volume rose to 350 million
LOGISTICS
Polish Trans Polonia Group acquires Dutch Nijman/Zeetank Holding
Tczew
It specializes in the transportation and logistics of liquid and gaseous products
SHIPPING
d'Amico Tankers Sells Two 2011-Built Tankers for $36.2 Million
Luxembourg
They will be delivered to buyers by the end of July and on December 21st.
EDUCATION
The Italian Merchant Marine Academy plans 13 new free courses
Genoa
Over 300 positions available
ASSOCIATIONS
A delegation of Wista Italy visits the ports of Catania and Augusta
Catania/August
The association is made up of women who hold positions of responsibility in the maritime, logistics and trade sectors.
PORTS
In the first five months of 2025, the port of Algeciras handled 1.9 million containers (-6.3%)
Algeciras
Empty containers decreased by -5.5% and full ones by -6.4%
INFRASTRUCTURE
Reway Group enters the port railway infrastructure maintenance sector
Licciana Nardi
Two contracts awarded by the AdSP of the Eastern Ligurian Sea
SHIPPING
Delcomar and Ensamar take over maritime services with the smaller Sardinian islands
Cagliari
The tender for the six-year concession of the connections has been awarded
PORTS
Port of Trieste, the newly appointed Gurrieri torpedoes the newly appointed Torbianelli
Trieste
Russo (Pd): it's a squalid power game
SHIPPING
Singapore's SeaLead expands its maritime shipping offering to connect Turkey and Italy
Singapore
Route connected to services transiting the Suez Canal
SAFETY & SECURITY
The US Container Security Initiative program has been extended to Morocco
Rabat
Amrani: Let's consolidate Tanger Med's role as a safe and world-class maritime hub
SHIPPING
Very positive first quarter for Greek Euroseas
Athens
Pittas: the positive momentum continued in the second quarter
MARINAS
Assonat and SACE present a plan for Italian tourist ports
Rome
LOGISTICS
Kuehne+Nagel has opened a new branch in Naples
Milan
The aim is to support the operational growth of the group in Southern Italy
COMPANIES
RINA has acquired the entire capital of Finnish Foreship
Helsinki
The Helsinki-based company specializes in consulting in the field of marine and mechanical engineering.
PORTS
Container traffic down at Barcelona and Valencia ports in May
Barcelona/Valencia
Resumption of containers in transit at the Catalan port
PORTS
Annual cargo traffic in Greek ports stable in 2024
Piraeus
Domestic volumes are growing, while foreign trade is decreasing
PORTS
Perplexity of freight forwarders, customs agents and maritime agents of La Spezia at the transfer of the port of Carrara to the Tuscan AdSP
The Spice
Timidly, they "hope for consideration for the progress made so far"
PORTS
Francesco Mastro appointed extraordinary commissioner of the Southern Adriatic Sea Port Authority
Rome
He will take up office on June 30th.
ASSOCIATIONS
John Denholm to be new president of the International Chamber of Shipping
Athens
He will take over from Emanuele Grimaldi in a year
PORTS
Extraordinary commissioners of the two Ligurian Port System Authorities have been installed
Genoa/La Spezia
Matteo Paroli and Bruno Pisano at the helm of the institutions
PORTS
Container traffic at Hong Kong port drops sharply in May
Hong Kong
1.05 million TEUs were handled (-12.7%)
TRANSPORTATION
Assogasliquidi-Federchimica shows the way to accelerate the decarbonization of road and maritime transport
Rome
Amadei: Our sector is ready and the time has come for courageous industrial choices
LAW
Eagle S tanker command blamed for cutting submarine cables in Gulf of Finland
Advantages
The accident was caused by the ship's anchor
SAFETY & SECURITY
Online platform to report critical issues that put transport workers at risk
Genoa
It was prepared by Fit Cisl Liguria
SHIPPING
GNV to create a direct summer connection between Civitavecchia and Tunis
Genoa
It will run alongside the historic route via Palermo
PORTS
The unification of Grimaldi's concessions in the port of Barcelona has been completed
Madrid/Barcelona
The contract expires on September 20, 2035.
PORTS
In the first five months of 2025, cargo traffic in Russian ports fell by -4.9%
St. Petersburg
A decrease of approximately -12% was recorded in May
LOGISTICS
Raben Logistics Group Creates Subsidiary in Türkiye
Milan
It will have 20 employees and a 2,000 square meter cross-dock warehouse
ASSOCIATIONS
Alberto Dellepiane confirmed as president of Assorimorchiatori
Rome
The composition of the entire association leadership remains unchanged
DEFENCE
Agreement between Fincantieri and Indonesian PMM to develop solutions to face new unconventional underwater challenges
PORTS
Italian Ports:
Ancona Genoa Ravenna
Augusta Gioia Tauro Salerno
Bari La Spezia Savona
Brindisi Leghorn Taranto
Cagliari Naples Trapani
Carrara Palermo Trieste
Civitavecchia Piombino Venice
Italian Interports: list World Ports: map
DATABASE
ShipownersShipbuilding and Shiprepairing Yards
ForwardersShip Suppliers
Shipping AgentsTruckers
MEETINGS
MEETINGS
The Assarmatori assembly will be held in Rome on July 1st
Rome
"Mediterranean against the current" the theme of the meeting
MEETINGS
The public meeting of the International Containers Studies Center will be held in Genoa on July 2nd
Genoa
››› Meetings File
PRESS REVIEW
US has its eye on Greek ports
(Kathimerini)
Proposed 30% increase for port tariffs to be in phases, says Loke
(Free Malaysia Today)
››› Press Review File
FORUM of Shipping
and Logistics
ASSITERMINAL
Intervento del presidente Tomaso Cognolato
Roma, 19 giugno 2025
››› File
PORTS
Structural adaptation works on dock 23 of the port of Ancona awarded
Ancona
Intervention worth over 11.8 million euros
MEETINGS
Conference on the role of LNG and bioLNG for the decarbonisation of transport and industry
Rome
The Federchimica-Assogasliquidi event will take place on Monday in Rome
INDUSTRY
Dutch Bolidt increases presence in cruise ship sector with acquisition of American Boteka
Hendrik Ido Ambacht
COMPANIES
Contship Italia has acquired the Genoese customs services company STS
Melzo
The Ligurian company was founded in 1985
PORTS
Francesco Benevolo has been appointed extraordinary commissioner of the AdSP of the Central-Northern Adriatic Sea
Rome
He is the operations director of RAM - Logistics, Infrastructure and Transport
PORTS
Montaresi resigns as commissioner of the Eastern Ligurian Port Authority
The Spice
In the eight months of administration - he underlines - we have not lost even a second
PORTS
Gurrieri has been appointed extraordinary commissioner of the AdSP of the Eastern Adriatic Sea
Trieste
Pending the completion of the formal process for the designation of the president
PORTS
The commissioners of the AdSP of Western Liguria have handed over their mandate to Minister Salvini
Genoa
The decision is part of the process of designation and nomination of the new leaders
LEGISLATION
Confetra criticizes the provisions of the decree-law Infrastructure for road transport
Rome
The Confederation urges the blocking of the process of appointing the presidents of the port authorities
SHIPPING
Taiwanese Evergreen, Yang Ming and WHL saw revenue decline in May
Keelung/Taipei
The decline is accentuated for the two main companies
SHIPYARDS
South Korea's KSOE wins order to build eight 15,900 TEU containerships
Seongnam
The unit value of each vessel is approximately $221 million.
PORTS
First port terminal for car traffic of Greek Neptune Lines
Piraeus
It will be inaugurated next year in the French port of Port-La Nouvelle
MEETINGS
The assembly of the association of Genoese maritime agents and brokers will be held on June 16th
Genoa
Round Table on Genoa, the hub of the North West and the Mediterranean
COMPANIES
BN di Navigazione Board of Directors Renewed
Genoa
BluNavy aims to reach one million passengers by 2025
SHIPPING
Viking Line designs world's largest all-electric ro-pax vessel
Viking Line designs world's largest all-electric ro-pax vessel
Åland
- Via Raffaele Paolucci 17r/19r - 16129 Genoa - ITALY
phone: +39.010.2462122, fax: +39.010.2516768, e-mail
VAT number: 03532950106
Press Reg.: nr 33/96 Genoa Court
Editor in chief: Bruno Bellio
No part may be reproduced without the express permission of the publisher
Search on inforMARE Presentation
Feed RSS Advertising spaces

inforMARE in Pdf
Mobile