Maritime Cyber Security Services

The international shipping industry is responsible for the carriage of around 90% of the world’s trade. With the first waves of digitalization starting to hit the sector, new and exciting business opportunities arise. While new technologies disrupt and push the Maritime sector forward at a rapid pace, cyber security challenges emerge, altering the global maritime threat landscape. Cyber risk is not only tied to the digitization paradigm, as human and organizational factors must be taken into consideration in order to ensure business resiliency both at sea and ashore. Addressing the increasing cyber security challenges requires, therefore, an active (proactive and reactive) approach, whereby risks are identified and effectively addressed across the three most critical cyber security pillars: human factor, technology and processes.

KPMG follows a sustained, modular, holistic and risk-based approach to help organizations successfully integrate maritime IT and OT equipment and security. We have extensive knowledge of sector standards such as IMO, BIMCO, TMSA, NIST CSF, ISO27001, ISO22301 and experience in various ship classification societies’ guidelines and resolutions / notation requirements. KPMG has been working on securing shipping organizations by looking at various important aspects of technology, processes, governance and people. We have a deep understanding of the fragility of maritime IT and OT environments and we take special care of health, safety, security and environmental issues and operate with a focus on people’s safety and your business continuity.

KPMG’s services that are tailormade to the requirements of the Maritime industry include:

• Cyber risk analysis.
  
  
• Classification of marine units.
  
  
• Awareness and training.
  
  
• Penetration testing and vulnerability assessment.
  
  
• Cyber security architecture.
  
  
• Cyber security incident simulation.
  
  
• Cyber incident response services.
  
  
• Compliance assessment.
  
  
• Governance.
  
  
• Monitoring.