ARTICLE
21 February 2020

Maritime Cyber Risk Management In Safety Management Systems

EN
Elias Neocleous & Co LLC

Contributor

Elias Neocleous & Co LLC is the largest law firm in Cyprus and a leading firm in the South-East Mediterranean region, with a network of offices across Cyprus (Limassol, Nicosia, Paphos), Belgium (Brussels), Czech Republic (Prague), Romania (Budapest) and Ukraine (Kiev). A dynamic team of lawyers and legal experts deliver strategic legal solutions to clients operating in key industries across Europe, Asia, the Middle East, India, USA, South America, and China. The firm is renowned for its expertise and jurisdictional knowledge across a broad spectrum of practice areas, spanning all major transactional and market disciplines, while also managing the largest and most challenging cross-border assignments. It is a premier practice of choice for leading Cypriot banks and financial institutions, preeminent foreign commercial and development banks, multinational corporations, global technology firms, international law firms, private equity funds, credit agencies, and asset managers.
On 17 February 2020, the Shipping Deputy Ministry of Cyprus issued Circular 4/2020 in relation to cyber risk following IMO Resolution MSC.428(98) which recognizes the urgent need to raise awareness on cyber risk threats ...
Cyprus Transport

On 17 February 2020, the Shipping Deputy Ministry of Cyprus issued Circular 4/2020 in relation to cyber risk following IMO Resolution MSC.428(98) which recognizes the urgent need to raise awareness on cyber risk threats and vulnerabilities to support safe and secure shipping, which is operationally resilient to cyber risks.

In this respect, the Facilitation Committee of the IMO has approved guidelines on maritime cyber risk management (MSC-FAL.1/Circ.3).

As noted in Circular 4/2020, maritime cyber risk refers to a measure of the extent to which a technology asset could be threatened by a potential circumstance or event, which may result in shipping-related operational, safety or security failures as a consequence of information or systems being corrupted, lost or compromised. Cyber risk management means the process of identifying, analysing, assessing and communicating a cyber-related risk and accepting, avoiding, transferring or mitigating it to an acceptable level, considering costs and benefits of actions taken to stakeholders. Noting the objectives of the ISM Code which include, the provision of safe practices in ship operation and a safe working environment, the assessment of all identified risks to ships, personnel and the environment, the establishment of appropriate safeguards, and the continuous improvement of safety management skills of personnel ashore and aboard ships, all shipmanagement companies of ships flying the Cyprus flag should address the cyber risks in their safety management system no later than the first annual verification of the company's Document of Compliance after 1 January 2021. ROs are expected to verify compliance with the above mentioned requirement during the first annual verification of the company's Document of Compliance after 1 January 2021.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More