To help owners, yards and vendors reduce the risk of cyber attacks during newbuilding, DNV GL has published the paper “Cyber security by design: A proposed approach applied to modern cruise ship newbuilding”.
Engaging system vendors and yards in sharing threat inventories with the owners and operators of complex vessel newbuildings has been found to significantly help overcome contractual layers and create stronger cyber system engineering teams. These then design and build more resilient cyber-dependant vessels. Similarly, by involving information security teams in cyber risk assessment activities which target vessels, their interfacing systems and the newbuilding lifecycle, improvement areas can be clarified and gaps in the cyber system over the life cycle of the vessel can be pointed to.
This paper is the result of the cooperation between both DNV GL’s and RCL’s maritime cyber security teams involved in the cyber security assessment and tracking activities in newbuildings of the latest mega cruise ships.
Our complimentary cyber security by design paper offers important insights:
- Overview of attack scenarios
- Detection of weaknesses
- Assessment methodology
- In-depth defence measures
- IT and OT verification