New joint working group focuses on cyber security
Inmarsat said that it is a founding member of a new joint working group (JWG) formed by the International Association of Classification Societies (IACS), to develop a coordinated position on cybercrime and its prevention. The company notes that stakeholders unity was critical in meeting the unpredictability of the cyber security threat to shipping.
IACS sees the JWG approach as key to driving pan-industry technical or policy initiatives forward, where the issue identified affects not only IACS Members but other parts of the industry. The group is being led by George Reilly of ABS and has been charged with evaluating measures to develop standardised industry practices to oppose maritime cyber threats from any direction.
“The primary aim is to provide a forum for active communication among industry groups that have an interest in the production, use and operation of cyber systems,” says Mr Reilly. “That includes a common understanding and sense of the technology as it develops, and direction and strategy for effectively managing cyber systems. The JWG can also assist in developing, reviewing or refining standards, operating procedures and best practices.”
Peter Broadhurst, Senior Vice President Safety and Security, Inmarsat Maritime, added that the maritime industry needs to move beyond, although there have been some initiatives on cyber-crime awareness and prevention so far.
“Inmarsat is putting the most extensive connectivity framework available at the group’s disposal. The aim is not for identical standards to be developed everywhere, but for consistency of approach in risk management.”
Inmarsat will launch its own Unified Threat Management cyber security solution later this year, but Mr Broadhurst emphasised that the cyber security working group was neutral in terms of commercial interests. Its aim was to attract industry-wide participation to encourage shipping to speak with a coherent voice on cyber security.
The group recognized the value of conducting a risk assessment workshop, so Inmarsat retained Professor Paul Dorey of CSO Confidential and Visiting Professor in Information Security, Royal Holloway College as group facilitator to ensure impartiality.
“Cyber security investment needs to be appropriate to the risk, as nobody has the luxury of bottomless digital budgets,” said Professor Dorey. “The more we digitise, the more interesting the systems become to cyber attackers and the more significant the potential impact could be when they do attack.”