In 2017 the International Maritime Organization (IMO) adopted Resolution MSC.428(98), which requires that a ship’s Safety Management System (SMS) should take into account cyber risk management in accordance with the objectives and requirements of the International Safety Management (ISM) Code. The ISM Code requires internal audits at least every 12 months plus an annual endorsement of the Document of Compliance.
Maintaining compliance with the ISM Code requires knowledge and awareness of both shore and ship based cyber related issues. Maritime cyber security is a rapidly changing landscape where no two shipping companies are identical and the wide range of conditions in which vessels operate are equally unique. To help you maintain the cyber elements of a ship’s SMS and ensure continuing compliance with the ISM Code you need a trusted expert partner who understands your business. A partner with a deep understanding of maritime operations at sea and onshore and with extensive cyber security know-how.
Cybertechnologies have become essential to the operation and management of numerous systems critical to the safety and security of shipping and protection of the marine environment.
Wärtsilä Cyber services relies on industry best practices to safeguard your service operations and onboard systems throughout their lifecycle. We help you to develop the resilience you need to defend against and recover from any form of cyber interference.
Maintaining cyber resilience is a continuous process that should never be thought of as completed. We help you to understand the current cyber security status of your operational environment and provide actions to mitigate identified cyber risks. Our services enable a systematic 360-degree approach to cyber security risk mitigation, from assessing your current cyber posture to implementing cyber controls and lifecycle services.
Wärtsilä’s approach to ICS cyber security is based on the guidance and requirements put forward by number of maritime classes, international IEC cyber security standards and best practices such as:
As an original equipment manufacturer (OEM) and service provider, Wärtsilä has a thorough understanding of vessel systems and can therefore provide complete lifecycle support to help you mitigate cyber security risks. Our wide global service network of skilled service engineers, extensive cyber security expertise, and strategic partnerships help to keep your vessels/fleet and maritime systems safe.
Assess your current situation and understand where you are in terms of cyber risks, compliance gaps or technical vulnerabilities.
Establish the foundation for your cyber risk management by setting up a cyber security management system, governance and policies.
Implement procedural and technical controls and system upgrades to reduce cyber risks.
Maintain cyber security resilience with active threat monitoring and effective incident response procedures with the help of Wärtsilä Product Security Incident Response Team (PSIRT) and our global service network.
Wärtsilä ICS vulnerability management services provide procedures for you to manage vulnerabilities, mitigate risks and run your operations more securely. Wärtsilä ICS vulnerability management services belong to the Cyber protection module and consists of following Cyber services:
Wärtsilä Product Security Incident Response Team (PSIRT) provides cyber security vulnerability assistance and incident response for Wärtsilä’s customers. PSIRT services prevent and address cyber security incidents at vessels and off-shore locations to secure continuous business without interruptions. The incident response process begins from the initial detection of the incident and covers all phases up to and including solving the ongoing issues and providing lessons learned and suggestions for overall improvement.