Guidance for cyber security in OT systems on board ships

Ships are increasingly using digital technology to support or manage critical
operations on board, including navigation, communications, manoeuvring and
cargo handling systems, so-called Operational Technology systems.

These systems may be vulnerable to threats such as hacker attacks, viruses, etc. This guide is intended to assist shipping companies in addressing such threats.

Digital vulnerabilities may be exploited via direct access to the Internet, via
suppliers or other external actors with system access, or in connection with crew inadvertently transferring malware to central systems.

Listed in this guidance are four recommendations on how to handle four vulnerabilities: Lack of crew knowledge, unclear roles and responsibilities, lack of processes, and insecure technical conditions.