CIRM launches Cyber Risk Code of Practice

We are pleased to announce that today (4th Feb 2020) CIRM has published two important documents:

  • CIRM Cyber Risk Code of Practice for Vendors of Marine Electronic Equipment and Services
  • CIRM Guideline GL-002 – Implementing the CIRM Cyber Risk Code of Practice

Both documents are available on the Publications section of the CIRM website: http://cirm.org/publications/index.html

The Code and Guideline were developed over two years by the CIRM Cyber Risk Working Group and subsequently approved by the Technical Steering Committee. We are sincerely thankful to all of you who provided your valuable input.

The Code is intended to be used by Vendors of marine electronic equipment and services, including producers of shipboard Information Technology (IT) and Operational Technology (OT) equipment, system integrators, service suppliers and Communications Service Providers in the marine electronics industry (collectively referred to as ‘Vendors’). The Code will enable them to implement effective and cost-efficient cyber security best practice derived from both the marine and other industries. As such, it represents CIRM’s view of cyber security best practice.

The Code consists of six guiding principles for Vendors to establish their role in the chain of trust for a secure digital maritime environment.