Cydome has been confirmed as the first international certification body for Maritime Cyber Baseline, a new programme developed by the IASME consortium, together with the Royal Institution of Naval Architects, to raise cybersecurity standards within the maritime sector.

Based in the UK, IASME works alongside a network of certification bodies to help certify organisations of all sizes in both cyber security and counter fraud, with Cydome the latest to be added to that list.

The newly developed baseline offers shipping companies certification to assert that their vessels uphold maritime cybersecurity regulation standards and includes audits of different types of vessels, such as commercial vessels, passenger ferries, and yachts. It also covers both crewed and autonomous ships.

Cydome has been approved to provide certification services for the baseline, with its automated compliance system able to be applied to assess an entire fleet’s cyber risk status.

“We’re very proud to become the first international certification body for Maritime Cyber Baseline and to join the IASME consortium,” said Nir Ayalon, Cydome’s CEO.

“This step is aligned with Cydome’s vision of providing maritime organisations with the ability to show their cyber resilience through a quick automated process – reducing the friction, hassle, cost and time of manual audits.”

“Getting a Maritime Cyber Baseline certification will give a strong message to the shipping companies, insurance companies and the management of the commitment to having a secure fleet – and to mitigate cyber risks.”

Source: https://smartmaritimenetwork.com/2022/07/19/cydome-approved-to-offer-maritime-cyber-baseline-certification/

NEW YORK, May 13, 2022 (GLOBE NEWSWIRE) — Guardforce AI Co., Limited (“Guardforce AI” or the “Company”) (GFAI, Financial)(GFAIW, Financial), an integrated security solutions provider, announced today that Handshake Networking Limited (“Handshake”), a subsidiary of the Company, has developed an automated marine scanning service designed to address key security vulnerabilities in the maritime transportation industry. The Company also announced it has launched this new service with one of the world’s leading operators of global container vessels based in Hong Kong.

Handshake Networking is a premier information security service provider, with a track record of providing network security solutions, including penetration testing, to multinational corporations since 2004. Assessing vulnerabilities and cyber-attacks on vessels at sea is complex, as these vessels move unpredictably between network providers. However, the new service, provided by the Company under a Software-as-a-Service (SaaS) model, addresses these vulnerabilities by allowing marine vessel operators to schedule security scans, adapting to unpredictable changes in the network and speeding up response time to a ship, even in the middle of the ocean. Once a scan is completed, the vessel operator receives a report showing any exposed services and vulnerabilities. This scanning platform provides global coverage and is hosted within the Company’s cloud environment.

Based on recent shipping fleet statistics from UK Department for Transport, at the end of 2021, there were an estimated 63,000 trading vessels in service around the world. Each of these ships contains complex computer systems for managing the engines, fuel and navigation, as well as e-mail, software updates, and access to cloud applications. Connection to global networks via satellite and cellular data is critical; however, this multiple network connectivity makes ships vulnerable to cyber-attack.

Terence Yap, Chairman of Guardforce AI, stated, “We are pleased to announce the launch of our automated marine scanning platform with one of the premier operators of global container vessels. Prior to our selection, our new automated marine scanning service was heavily evaluated by this customer, providing strong validation of the robustness of this cyber intelligence offering and application within the maritime transportation industry. With rapid digitalization of the industry, more and more global shipping companies have come to realize the economic impact of cybercrimes and the need for efficient solutions to help prevent these risks. Cybersecurity solutions are more urgent than ever as International Maritime Organization regulation requires that all vessels and ships worldwide include cyber risk management in their safety management systems in accordance with the International Safety Management (ISM) code. Cybersecurity attacks represent an unprecedented threat to the shipping industry, as well as to the global community, and we anticipate that the demand for our solutions will continue to grow.”

Richard Stagg, Managing Director of Handshake, stated, “International logistics is a prime target for cyber-attack and threats directed at vessels can affect crew, cargo and even ports – as well as the smooth functioning of the ships’ operations. Through our SasS offering, we can provide our customers with a truly cost-effective solution that encourages frequent security checks. With more than 17 years of experience as a provider of information security services, Handshake is well positioned to efficiently assess information security even on container vessels, despite the technical constraints. We look forward to accelerating the commercial rollout of our marine scanning service, which we believe will play an invaluable role in defending corporations and critical infrastructure worldwide.”

Source: https://www.gurufocus.com/news/1820121/guardforce-announces-its-subsidiary-handshake-networking-has-launched-a-new-cybersecurity-marine-scanning-service-with-a-leading-operator-of-global-container-vessels

KOCHI: The sixth Deputy National Adviser level meeting of the Colombo Security Conclave held in Kochi resolved to join hands to ensure maritime safety and security and to fight terrorism, radicalization, trafficking and organized crime. In the opening session, the delegates called for greater cooperation among the member countries.

Representatives of India, Maldives, Mauritius, and Sri Lanka and observer countries Bangladesh and Seychelles attended the conclave. The delegation from Bangladesh, who arrived in Kochi, could not attend the conclave due to medical reasons.

In his opening remarks, Deputy National Security Advisor of India Vikram Misri said the efforts to tackle narcotics trafficking and organized crime and mitigation of ill effects of pollution were concrete examples of the cooperation among law enforcement agencies of member countries. “Cyber security and cyber technology will play an important role in our efforts to manage threats and build cooperation in an ever challenging environment,” he said.

Seeking India’s help to ensure the safe repatriation of displaced Myanmar nationals to their country of origin, Defence Advisor at the Bangladesh High Commission in New Delhi, Mohammed Abdul Kalam Azad, said India should play an effective role in addressing the issue. “Thousands of displaced Myanmar nationals are facing an uncertain future and they are getting attracted to extremism, radicalism and drugs,” he said.

Sri Lanka’s Chief of Defence Staff General Shavendra Silva suggested that joint working groups should be formed to collect and disseminate intelligence to tackle various threats including terrorism and radicalisation. Pointing out that trafficking and organised crimes have been a major security threat, he said the conclave is an ideal platform for cooperation in tackling the trafficking of drugs and terrorism.

Stressing on the need for collaboration and coordination to address issues of common concern and outlook, Maldives foreign secretary Ahmed Latheef said the country’s economy is heavily dependent on maritime security and Maldives has remained vulnerable to threats of trafficking, organised crime and terrorism, which emanate through the maritime domain.

“Protection of coastal community, marine environment and resources have been out priority. The security dimensions are large and complex. We have to share information, knowledge and skills to improve maritime security,” he said.

There should be a coordinated effort to tackle common security threats, said representative of Mauritius Yoidhisteer Thecka.

“The member countries should cooperate to tackle the threats involving cyber security, terrorism, radicalisation and drug trafficking. Illegal, unreported and unregulated fishing and damages to environment are other challenges. Mauritius is eager to participate in joint security initiatives,” said Thecka, who is the Principal Coordinator of Security Matters at the Mauritius Prime Minister’s Office

Chief of Staff of Defence Forces of Seychelles Colonel Simon Archange Dine sought collaboration to protect the marine resources.

Source: https://www.newindianexpress.com/cities/kochi/2022/jul/07/colombo-security-conclave-agrees-to-fight-maritime-threats-jointly-2474005.html

PUBLISHED JUL 6, 2022 5:18 PM BY THE MARITIME EXECUTIVE

The National Maritime Law Enforcement Academy (NMLEA) has selected HudsonCyber’s innovative cyber risk management program, PortLogixTM, to drive organizational cybersecurity resilience in its recently launched port digitalization and accreditation initiative.  Unique in the maritime industry, PortLogix enables cybersecurity self-assessment, program management, dynamic investment and resource planning, real-time trend analysis, and long-term benchmarking.

Launched in early 2021, PortLogix has since served a wide range of port authorities, terminal operators, and port community systems around the world.  Part of its success lies in the fact that PortLogix integrates the cybersecurity best practices and standards published by NIST, ISO and ENISA and seamlessly harmonizes them with national and IMO regulatory requirements.  Significantly, PortLogix’s maturity-model approach and vendor-agnostic recommendations have also been embraced by many leading global insurance brokerages and underwriters to support the evolving cybersecurity insurance market in the global maritime industry.

As the maritime industry rapidly digitalizes, the physical and cyber threat landscapes are increasingly overlapping. To address the growing threat to the maritime sector, the NMLEA has launched its Maritime Security Accreditation and Digitization Program (“MARSEC ADaPt”) to establish a baseline pre-requisite standard that will enhance and drive maritime security readiness and resiliency. The program will integrate asset digitalization capabilities with maritime security vulnerability assessments, training, exercises, and cybersecurity.

As part of its MARSEC ADaPt implementation, the Tampa Port Authority d/b/a Port Tampa Bay successfully completed its PortLogix implementation this past May.  After engaging and committing to the cybersecurity assessment process, Ken Washington, Chief Information Officer and Mark Dubina, Vice President of Security at Port Tampa Bay, expressed their enthusiasm and strong support for the PortLogix evaluation and assessment process.

NMLEA founded MARSEC ADaPt on the core capabilities of two key organizations: ARES Security and HudsonCyber. ARES Security drives the accreditation initiative by digitizing critical maritime infrastructure, known as Digital Twins, and offering digital data to optimize security risk management, vulnerability analysis, and security training functions. HudsonCyber drives cybersecurity resilience through its award-winning platform, port-tailored platform PortLogix.

“Ports will benefit through a reduction in annual costs associated with ongoing Maritime Transportation Security Act (MTSA) regulatory compliance,” said NMLEA Executive Director Mark DuPont. “Through the NMLEA MARSEC ADaPt Program, ports will be able to implement a nationally-recognized baseline standard for maritime security – a standard that has not previously been established.”

“Advancements in maritime digitalization are accelerating and have broad security implementations for today’s ports and port terminal operators.  It makes data security a top concern for port executives,” added Max Bobys, vice president of HudsonCyber.  “Through in-depth multi-stakeholder engagement, we’re able to not only assess a port’s overall cybersecurity capabilities, we’re also able to drive cross-functional cybersecurity awareness and from there facilitate consensus-driven buy-in regarding prioritization and resource allocation decision-making.  And that ultimately drives organization wide cultural change, improved accountability, and board level engagement.”

Source: https://www.maritime-executive.com/index.php/corporate/hudsoncyber-portlogix-selected-as-cybersecurity-core-of-marsec-program

“We are ensuring that different parts of our digital system will talk to each other in one smart network”

 

How do you visualise the UAE maritime sector growing in the post-pandemic world? What role will RAK Ports play here?

 

Despite the many challenges the maritime sector faced during the global Covid-19 pandemic, RAK Ports saw its volumes reach record highs. Although current market volatilities and commodity price swings are challenging, our growth trajectory continues and 2022 is set to be another outstanding year. This consistent uptick in volumes is great news for RAK Ports, but it means our business must adapt quickly.

 

The UAE will continue to be a critical hub for global shipping in the years ahead, and RAK Ports is ideally poised to play a leading role. Sustainability will be a key theme, and the UAE will again be at the forefront. We are already assessing how stricter emissions regulations may affect vessels operating in our waters and how we can best integrate alternative energy strategies at RAK Ports. The UAE recently showcased its Hydrogen Leadership Roadmap to promote the country’s maritime energy transition, as we work towards net-zero carbon emissions by 2050. That plan includes our industry producing green hydrogen and processing it as the basis for bunker fuel for ships and for export.

 

 

RAK Ports has made significant investments in expansion in the past few years. What are the key areas of investments?

 

We are not only investing into physical infrastructure with a massive land reclamation project already well underway at Saqr Port/Freezone, which will provide much needed space for new industrial investment to support the diversification of the local economy and more opportunities for skilled employment; we are also working on a full digitisation strategy to increase efficiencies. While many ports are implementing standalone digital systems, we are taking a more connected approach at RAK Ports. This will ensure that different parts of our system will talk to each other in one smart network. For example, our German-engineered dry-bulk cranes already use IoT technologies to submit automated reports that allow our customers to see the status of their cargo loading in real-time.

 

 

“Future challenges for companies would include strengthening digital capabilities and protecting against cyberattacks”

 

 

Ramesh S. Ramakrishnan | Chairman, Transworld

 

 

Congratulations on the MoU signed between Transworld and eShipper! What does this deal signify for Transworld and the UAE shipping and logistics sector in general?

 

With this Joint-Venture with eShipper, Transworld Group further augments its services to its customers by providing end-to-end services using a combination of advanced infrastructure, multimodal fulfilment and last mile delivery. The strong legacy, brand and service synergies of both the organisations coming together will offer a unique service offering to our esteemed customers and Transworld Group becomes one of the few companies in the UAE to provide services ranging from shipping to last mile operations. eShipper has a very specific expertise and have been building it up in Canada and North America over the last 15 years.

 

We have entered JV with them to enhance our e-commerce delivery, in the Middle East to start with, which will eventually come to India. Online buying is here to stay. It is a good space for somebody like us, having the right technology, people, and skill sets. This also compliments a lot of what we do as a logistics company.

 

 

As a sector pioneer, what is the toughest challenge you foresee for shipping and logistics in a post-pandemic scenario and how do you see Transworld surmounting, it?

 

One of the biggest challenges during the pandemic for companies was to abruptly take their operations digital. Thankfully for Transworld Group, we started the process of digitalisation few years ago and we were successfully able to adapt during the pandemic. Going forward, one of the biggest challenges for the companies would be to quickly adapt and strengthen their digital capabilities to be able to align with the industry and also protect themselves from cyberattacks.

 

 

What are Transworld’s expansion plans over the next five years?

 

The essence of Transworld growth trajectory has been innovation and getting into new frontiers. There are lots of different areas within the logistics and supply chain space offering us score to evolve and build new business ideas. Our supply chain business, for example, the sea freight, air freight, warehousing, 3PL, 4PL, business, has been growing. The plan now is to refocus our energies on increasing the pace of growth.

 

We are also looking at enhancing our global footprint in the Americas, Europe, Africa and Far East. So, be it through our asset-owning or asset-light businesses, we are focused on serving our customers better. Our focus is on becoming a complete solutions provider for our customers. Today if a customer asks for any service from Transworld, we can provide first mile to last mile solutions.

 

 

As a philosophy TW group is driven by the higher purpose of delivering prosperity to humanity.

 

While we are in the business to make profits for our shareholders, employees and associated partners, the sublime goal is to use this wealth as a medium to share and create prosperity for the entire ecosystem and be a catalyst for positive change. Our corporate responsibility activities are spread across all sections of the society and environment. The employees and their respective families are all involved in our social activities, thereby spreading the culture of compassion and giving.

 

We are also setting ourselves a goal at the Transworld Group where by taking a pledge to work towards being a carbon-neutral organisation by 2043. To reach that aim, over the next few years, we will start with focusing on reducing our greenhouse gas emissions to meet these goals in a more measurable manner.

 

 

“The wider challenge is that the global shipping industry needs to catch up and embrace change”

 

 

Laurance Langdon | General Manager, Modern Freight Company (MFC)

 

 

How much in your view as an industry pioneer has the industry changed since the early years and what is its scope for expansion going forward?

 

With the vision of the UAE leaders, the move to digital and paperless and the implementation of blockchain, change is happening fast in the logistics sector. It’s clear that JAFZA wants to be the region’s central point for business and their openness to listen to their customers enables this change, and MFC has for decades always been a go-to partner for JAFZA to discuss and test these new ideas. There is a wider challenge, and perhaps the bottleneck is that the industry needs to catch up and embrace many of these changes so globally everyone is connected, but for now the UAE is definitely well positioned for the future.

 

 

Enhancing business procedures is an obstacle for shipping firms, how is MFC evolving to counter this?

 

Covid sent out a message to businesses — evolve or die, demanding a different work ethic. So, MFC overhauled its processes, investing in a new ERP, a system built in-house for our customers. Visibility and customer connectivity is in demand, and now we are more efficient, which improves our customer experience.

 

 

“We are considered to be the largest maritime classification office in the UAE”

 

 

Waleed Abdulla Mohamed al-Tamimi | General Manager, Tasneef Maritime

 

 

As the first UAE maritime body to apply the GCC Code, how is Tasneef Maritime guaranteeing the safety of the UAE maritime environment?

 

The GCC Code is a set of guidelines developed by the GCC nations for Non-Convention Vessels that are smaller than 500 tons, and are not obliged to follow International Maritime Organisation (IMO) Conventions. The code focuses on the safety of the small vessels and ensures that they don’t cause marine pollution, using this code as a reference. Tasneef inspects these vessels for their compliance and issues certifications to enable them to obtain navigation licenses from the UAE Flag Administration.

 

Without Tasneef Certification, these vessels cannot operate in UAE waters. With over 70 professional staff, we are considered the largest maritime classification office in the UAE.

 

 

What classification and advisory services do Tasneef offer?

 

Tasneef can provide Classification and Statutory Services for all types of commercial vessels that require certification by law., such as tankers, bulk ships, container ships, etc. We also provide certification services for naval vessels and private yachts that include the UAE Yacht Code. The advisory services are numerous. One of the services we introduced uses Artificial Intelligence in the inspection of assets to ensure their integrity. Assets can be large civil structures like ports or complicated offshore structures such as production rigs for oil and gas.

 

 

“The industry saw a steep learning curve through 2020-21, with massive increase in freight costs”

 

 

Rosh Manoli | Vice President – Freight Forwarding, Consolidated Shipping Services Group

 

 

As an industry head, in your view how has ocean freight management changed post-pandemic?

 

The industry had a steep learning curve through 2020-21, while witnessing a massive increase in freight costs, with container and shipping prices reaching up to ten times higher than before the pandemic. Congestions in major ports have also played a huge role and we still cannot ascertain if this will reduce, seeing that the pandemic is not over yet. The successive waves of Covid have impacted a drop in personnel as well – right from a shortage of professional truck drivers to logistic operators in key markets causing difficulties in optimised operation of ports, terminals, and warehouses. As an organisation, CSS has been resilient to withstand these changes.

 

 

What are CSS’ expansion plans?

 

CSS is expanding its operations into Saudi Arabia, in line with the KSA vision of 2030 that also focuses on logistics as a key economy driver. We are also expanding into East Africa this year. CSS also invested in tech, ramping up our IT capabilities to maintain a 360-degree control for operational cohesiveness.

 

 

Original Source link

The agreement links Marlink’s smart hybrid connectivity with the remote digital and safety services provided by BV. Having identified crossovers in their mutual customer base, the partners will collaborate to help enable maritime stakeholders to more easily adopt cyber-strengthened digital tools and applications using the Marlink network.

The partners have put in place a working group to support shipowners around improving the cyber security of vessel data collection and facilitating compliance with regulation. This aims to support remote and digital operation modes on a journey to smarter, remote and, ultimately, autonomous ships with zero-emissions.

The duo has also identified the need for dedicated channels of co-operation recognising a common interest in removing the barriers to smarter, cleaner vessel operations. The organisations will seize opportunities to work outside the silos that have held back the industry from accessing data that can lower operating costs, save fuel and drive compliance.

The partner program will be expanded over time, with a proactive approach towards new areas of collaboration bringing in new initiatives where possible, ultimately leading the industry into new eras around smart shipping, unmanned and autonomous vessels. As well as simplifying implementation of cyber security standards for shipyards, the agreement is ‘open source’ enabling third party application providers, start-ups and software developers to participate where appropriate.

“This is a partnership with real purpose whose foremost point is to take action to integrate digital tools and services that can bring value for shipowners and encourage and further develop cyber-secure, innovative Class operations,” said Matthieu de Tugny, president, Bureau Veritas, Marine & Offshore. “BV is dedicated to helping our clients understand and manage the challenges of decarbonisation and adopt the digital tools that can support the transition.”

“Shipowners face huge efficiency and compliance challenges over the next decade and these need to be considered now to create a future-proof path that can integrate core operational components onboard and ashore,” said Tore Morten Olsen, president, maritime, Marlink. “Digitalisation is critical to improving voyage optimisation and vessel performance, achieving regulatory compliance and meeting ESG goals, but shipowners shouldn’t have to act as project managers – this partnership means they can streamline and simplify their digital journey based on Class guidelines and recommendations.”

NAPA calls for the maritime sector to come together to strengthen cybersecurity, as the company’s industry-leading practices on data protection and information security are endorsed by ISO 27001 certification.

NAPA, a global provider of software, services and data analysis for the maritime industry, has received the ISO 27001:2013 certification on information security management, validating the company’s adherence to international best practices on data management and security.

ISO 27001:2013 is an international standard that defines the requirements for a comprehensive information security management system, enabling organizations to safeguard the confidentiality, integrity and availability of data. The certification, which was delivered by classification society Bureau Veritas (BV), covers all of NAPA’s activities, products, services and locations. It confirms that robust data security systems are incorporated throughout NAPA’s processes and product development to protect the information entrusted by its customers against security risks, such as data leaks, hacks, or cyberattacks.

Upon receiving the certification, NAPA’s CEO, Mikko Kuosa, called on all shipping stakeholders to join NAPA in taking tangible and proactive steps together to build cyber resilience across the industry. As the number of cyberattacks and incidents is on the rise, Mr Kuosa urged maritime companies to ensure that their data, which is critical to their safety and operations, is protected by robust security systems.

“The data-driven insights made possible by greater connectivity onboard have enabled a giant leap forward in safety, emergency response, and voyage optimization – and there is no turning back. The benefits of connectivity are tremendous, and the increased digitalization in maritime also comes with the important responsibility of putting the right safeguards in place to maintain a cyber secure system at sea. In this context, the industry needs guarantees that its business-critical data is in safe hands and must demand the highest standards from its partners. This is why at NAPA we are dedicated to having robust security procedures in place to protect the sensitive data that is entrusted to us, as we help shipping companies sail more safely and sustainably,” said NAPA’s CEO Mikko Kuosa.

“At NAPA, we are proud to be spearheading best practices for the industry, with our comprehensive information security policy which guarantees that all confidential information is managed and stored with appropriate procedures in place. This means that users can safely take full advantage of the collaboration benefits and improved communication that our connected systems enable. Today, we are delighted to see our industry-leading practices formally recognized by the prestigious ISO certification,” Mikko Kuosa added.

On June 15, 2022, Sumitomo Heavy Industries Marine & Engineering Co., Ltd. (President: Koichi Miyajima, a wholly-owned subsidiary of Sumitomo Heavy Industries, Ltd. Hereafter SHI-ME) received the factual statement of “ShipRight Cyber SECURITY Capability (Level 1:Established)” from Llyod’s Register.

Due to the development in satellite communications, there is a growing demand for addressing the risks and establishing security capabilities against cyber attacks.
To verify that our digitally connected vessel monitoring system, the Automatic Voyage and Engine Data Acquisition System (AVEDAS), has sufficient and efficient security measures against cyber threats, SHI-ME implemented a risk assessment and obtained approval from Lloyd’s Register and Nettitude Inc.

Lightwell Co., Ltd., rendered significant assistance in the development of AVEDAS, and , an onboard data collection platform of Furuno Electric Co., Ltd. (FURUNO Open Platform, FOP) is adopted.

To the actual ship, cyber security and risk management should be introduced by shipowners as well. SHI-ME will continue enhancing its protective measures through collaboration with shipowners and all maritime stakeholders and contribute to establishing sustainable shipping by providing safer ships.