Proceedings magazine is a communication tool for the Coast Guard's Marine Safety & Security Council. Each quarterly magazine focuses on a specific theme of interest to the marine industry.
Issue link: https://uscgproceedings.epubxp.com/i/436751
41 Winter 2014 – 2015 Proceedings www.uscg.mil/proceedings others are working with local and federal law enforce- ment, as well as academic institutions, to identify and implement cybersecurity best practices. Port information technology leaders, along with their counterparts in private industry, have confronted cybersecurity threats for some time. However, the issue of cybersecurity continues to grow in prominence and gain attention, evolving rapidly all the while, and there is a need for clarity in communication about goals, strat- egies, tactics, and objectives. To ensure that the federal government, state and local partners, and security experts are communicating clearly and effciently, com- mon language is critical. Maintaining Cybersecurity While all of this new security technology makes us more prepared than ever for just about any hazard imaginable; if we are hacked, we are blind, useless, and potentially locked out of our own house. In essence, while technology helps us to be better prepared to con- tain and/or recover from any physical threats, it makes us more vulnerable than ever to cyber attacks, as we are utterly dependent on our technology for command and control of the port. This makes cybersecurity more important than ever before and truly brings the physical and cyber threats to the same playing field. For example, think about what you could control remotely by technology a mere 10 years ago. What physical assets, access, cameras, systems, and such can you control remotely today in comparison? Imagine if someone else was controlling those assets and systems. What could they do? Sink a vessel in a channel? Turn off safety sys- tems and pressure relief valves and structures on pipelines? Release hazardous materials stored on site? Lock personnel and vehicles in or out of facilities? Cut electricity, HVAC, telecommunications, and such to facilities? With the stakes this high and the ability of today's cyber criminals and terrorists to take the smallest opportunities to do great harm to our port facilities, it truly takes every employee's efforts to maintain cybersecurity for our nation's ports and critical infrastructure assets. Cybersecurity is everyone's responsibility, and little things add up to big things. From employees walking away from their desks without locking their computers, to plugging in and opening an unknown USB stick found in the park- ing lot, to working remotely in a dodgy Internet café to check email in Abu Dhabi, to loaning someone else their TWIC, or not vetting information technology (IT) contrac- tors — cybersecurity risks are owned by more than just the IT department. In short, port managers and our response partners across all levels of government need to remember and constantly remind our workforce that everyone has a vital role to play in continuing to provide layered cybersecurity to our ports and to the nation. About the author: Ms. April Danos is the director of Information Technology for the Greater Lafourche Port Commission. She is also the chairman of the information technology committee for the American Association of Port Authorities and chair of the IT cybersecurity subcommittee. Port of Vancouver at Night: Maxvis / iStock / Thinkstock; binary code: Cherezoff / iStock / Thinkstock