IMCA Security Bulletin 01/19
The IMCA Security Committee is determined to raise awareness of security issues that can potentially harm member companies. Information provided in this regular Security Bulletin is intended to be used by members to either directly pass on to employees or use the material it contains as part of an existing company security awareness programme.
Cyber Security
The ‘Be cyber aware at sea’ web site is recognised as a useful tool to assist in raising awareness. Each of the first eight IMCA security bulletins will refer the reader to one of the Be cyber aware at sea poster and video campaigns; this bulletin it is ‘Watch where you surf’:
Industry Article
- Oil & Gas & Technology – Proactive steps required to secure the digital future for oil and gas
Traditional Security
Links to recent security related information:
- Combined Maritime Forces Industry Releasable Threat Assessment
- NATO MARCOM Monthly Newsletter (dated January 2019)
- Member analysis of US Naval Deployment to the Gulf
The IMCA HSSE Security committee is pleased to endorse and support the following guidance for the benefit of members:
Each Guidance Document is unique and supports the overall aim of being prepared and taking mitigating measures. In relation to cyber security, this will eventually become a compliance issue. All companies will be required to conduct a Cyber Security Risk Assessment to demonstrate how to mitigate and deal with the threat of a cyber security attack
Best Management Practice -BMP5
The 5th edition, issued June 2018 is an extremely useful and comprehensive guidance. It introduces effective measures for the protection of crew, vessels and cargo while transiting the Red Sea, the Gulf of Aden, the Indian Ocean and the Arabian Sea. The new edition supersedes BMP4.
Global Counter Piracy Guidance for Companies, masters and Seafarers
This Guidance will help companies and mariners prepare for and mitigate against piracy wherever it occurs. The guidance is applicable for all ship-types and complements regional guidance (BMP5) on piracy and Maritime Security.
Guideline to Harden Vessels (OCIMF)
This new guidance, released in July 2018, from OCIMF recommends a layered defence methodology for hardening vessels to help prevent unauthorised boarding. The Guidance also recommends using a Vessel Hardening Plan (included in the document) to help ensure vessels are prepared for operations in areas of increased security. Although the focus is on vessels when underway, measures are also examined for vessels at anchor and alongside.
General Cyber Security Guidance for Vessel/Ship-owners
This third edition, published on 7 December 2018, provides additional information to assist shipping companies carry out risk assessments and include measures in their safety management systems to protect ships from cyber-incidents. A new dedicated annex provides measures that all companies should consider implementing to address cyber risk management in an approved Safety Management System.
Guidance on security threat risk assessment procedures (IMCA M 236)
This guidance is aimed at the process of identifying security threats and determining vulnerability of company assets, including its employees, to the threats identified, so that security procedures, resources and measures can be allocated most effectively and efficiently
Supporting file(s)
Combined Maritime Forces Industry Releasable Threat Assessment (627.5kB)
Member Analysis of US Naval Deployment to the Gulf (540.6kB)
IMCA Contact
Richard Purser
Technical Adviser - Marine
Contact
Information Note Details
Published date: 22 January 2019
Information note ID: 1427
Downloads
IMCA’s store terms and conditions (https://www.imca-int.com/legal-notices/terms/) apply to all downloads from IMCA’s website, including this document.
IMCA makes every effort to ensure the accuracy and reliability of the data contained in the documents it publishes, but IMCA shall not be liable for any guidance and/or recommendation and/or statement herein contained. The information contained in this document does not fulfil or replace any individual’s or Member's legal, regulatory or other duties or obligations in respect of their operations. Individuals and Members remain solely responsible for the safe, lawful and proper conduct of their operations.