WSM launches campaigns on board to raise cyber security awareness
WSM has established and enforced a cyber security policy, onboard cyber security awareness training, training videos and frequent periodic updates on cyber security measures.
Looking at Industrial Revolution 4.0 where electronic systems including unmanned vehicles, augmented reality, the Internet of Things (IoT), sensor technology, geo-spatial technology and artificial intelligence, the biggest threat to this advancement is cyber security.
Cyber security training for crew is a mandatory and high focus area to mitigate human error that may lead to cyber security breach. Wilhelmsen Ship Management (WSM) has established and enforced a cyber security policy, onboard cyber security awareness training, training videos and frequent periodic updates on cyber security measures.
This training program comprises of the following elements:
- Raising the awareness of cyber security
- Kinds of threat that could breech cyber security and how it works
- Password policies to build a strong password
- What to avoid and look out for
- Preventive measure – best practices
- The training is applicable to existing and new crew before on-boarding. Once on board they are presented with a list of do’s and don’ts as reminder of their training.
Besides training, Wilhelmsen Ship Management also launches campaigns on board to raise cyber security awareness with a core message that highlights cyber security is everyone’s responsibility. To reinforce the message, on-shore vessel IT specialists going on board for vessel visits will reiterate this manifesto to the crew.
Owners are as aware as ship managers that any breech of cyber security can lead to potential damage in the delivery line. In tandem with the reliance of automation and digitization onboard, WSM sees growing risks and implications of cyber security breech.
Company believes that working closely with ship owners is the way to enforce and build strong cyber protection. Forward leaning owners are more willing to invest in providing additional IT infrastructure onboard for risk management.
A robust cyber security framework can be easily compromised by end user vulnerability. Hence it is important to cultivate a culture on board and on shore focusing on protecting it.
To have the right culture in place, company plans to create the right motivation for the seafarers and staff to learn. At sea, WSM lowered the threshold and language used in training materials so that seafarers can identify and relate to the importance of cyber security. WSM also carries out IT Penetration Tests and Security Assessments on board.
On shore, constant communication and security measures are enforced to drill in the importance of creating a safe digital environment.
The added bonus is that with all these learnings, seafarers and staff have made this applicable at home and at play for protecting their own cyber presence outside the workplace.
IMO has included maritime cyber risk management into its list of Information Security Management Code. The adoption of the regulation and cyber risks must be appropriately addressed in safety management systems no later than the first annual verification of the company's Document of Compliance after 1 January 2021.
This is a huge leap for shipping as cyber security enforcement must happen within companies to protect ourselves from jeopardy.
WSM continues to be the leader in making a digital shift, building a safe cyber security net through education and infrastructure will be constant priorities with technology advancements.