IMO Understand Service.
There are numerous stages to delivering cyber compliancy against the IMO (International Maritime Organisation) ISM (International Safety Management) Code on Maritime Cyber-Risk being introduced in January 2021.
CSS Platinum are advisors to the maritime community, including the flagging states, helping them design the assessment criteria for the implementation of Cyber Risk Management programs.
CSS Platinum’s IMO Understand Service provides a complete 360 assessment and report to assess the cyber-risk to your vessel, people, processes or technology against the IMO ISM Code.
Our IMO Understand Service will provide risk assessments, gap analysis and technical penetration testing by our team of IMO cyber-specialists to deliver a detailed report demonstrating commitment to Maritime Cyber Risk Management and engagement with the requirement.
IMO Understand Service provides:
A complete report of you maritime cyber risk resilience based against IMO Guidelines, including:
Bespoke Risk Register for your vessel
Technical Penetration Testing certification
Gap Analysis against the IMO Cyber Compliance advised standards
Roadmap for implementing governance and protections to meet the advised IMO Cyber Compliance standard
IMO Understand Package
£7495 + VAT
Want to learn more about our IMO Understand package?
Submit this form to schedule a call to discuss your or your clients requirements today!
What does the
IMO Understand Service include?
IMO Risk Assessment.
To demonstrate maritime cyber risk management, you need a register from which to manage your risks. To build a risk register your need to conduct maritime cyber risk identification.
As a specialist cyber security provider, we recognise that risk identification is rarely conducted correctly or thoroughly. To be successful, you need to invest in this analysis. We have many years of specific maritime cyber risk experience to help you understand where you are likely to be holding risk. Maritime cyber risk manifests itself in many different ways:
Breakdown of Risk Assessments provided:
- Operational technology risk.
- Information technology risk
- Device & Internet of Things (IoT) risk.
- Crew risk
- Supplier risk
- Visitor risk
- Cyber-attack response risk
- Cyber-attack recovery risk
- Disaster management risk
- Business continuity risk
- Governance risk
IMO Gap Analysis.
To achieve IMO cyber compliance, you need to address the advised IMO maritime cyber risk management recommendations. To achieve this, you need to understand whether, if at all, your current cyber resilience governance, protections and processes and systems meet the advised standards.
Policy and Asset Review.
Being able to demonstrate due diligence and governance is key to a cyber-risk management plan.
Your crew are your biggest strength but also an area of significant vulnerability. Cyber-criminals are known to target owners, their vessels and their families through their crew.
Crews and teams will have multiple devices in their possession that have trusted access to your digital networks. You need to protect against their errors, accidents and sadly occasionally their malicious acts. This is mitigated by selecting the right crew in the first place and training crew how to recognise threats, attacks and how to use their electronic devices appropriately.
A penetration test provide digital tools to identify whether any “digital” windows and doors are unlocked and open to access.
Penetration tests are conducted by our ethical hackers. In the cyber world, there are angel and demon hackers. Demon hackers are criminals. Angel (ethical) hackers have integrity and morals and protect against demon hackers.
Review Back Up Plan/Policy.
Planning contingency, back up and DR of your most valuable information and data is vital for a cyber-risk management program.
Want to get started?
Download our FREE IMO Quick-Start PDF for the questions you will need to answer on your cyber-policies for IMO compliance.
Fill in the form to request your free download
About CSS Platinum
CSS Platinum cybersecurity framework delivers against IMO cyber risk guidelines. Our specialist team work with the leading maritime associations and intermediaries to deliver a robust compliancy plan to meet IMO guidelines.
Our dedicated IMO team can assess the vulnerabilities, liabilities and how to build a comprehensive cybersecurity plan to address them and future proof against all cybersecurity risks.