Proceedings magazine is a communication tool for the Coast Guard's Marine Safety & Security Council. Each quarterly magazine focuses on a specific theme of interest to the marine industry.
Issue link: http://uscgproceedings.epubxp.com/i/436751
52 Proceedings Winter 2014 – 2015 www.uscg.mil/proceedings Cybersecurity is not a new concept. For as long as com- puters have been interconnected, information technology managers have fought to keep networks and data secure. However, as industrial control systems and other maritime transportation system (MTS) technologies become increas- ingly networked, the increased efficiency comes with a cost — cybersecurity vulnerabilities that transcend the typi- cal physical security maintained within our ports. Government efforts to defend against these risks include the Department of Homeland Security (DHS) National Infra- structure Protection Plan, which taps the Coast Guard as the sector-specifc agency for the maritime mode of transporta- tion. 1 It is in that role that the USCG is working to identify risks, develop policy, and strengthen intra-governmental and industry partnerships and information sharing net- works to promote maritime sector cybersecurity. MTS Cybersecurity and Information Sharing Within the Coast Guard, numerous entities have a direct interest in MTS cybersecurity. For example, sectors, marine safety units, and marine safety detachments are the pri- mary interface with the maritime industry and are the most familiar with facility and vessel physical layouts, cargoes, and existing physical security measures. Captain of the port 2 (COTP) authority and the responsibili- ties of the federal maritime security coordinator 3 (FMSC) reside primarily at the sector level. In terms of security and cybersecurity, the FMSC typically chairs or co-chairs the area maritime security committee (AMSC). While com- mittees vary among ports, they are generally comprised of federal, state, local, and tribal government representatives; port, company, and facility security offcers; trade represen- tatives; and marine exchange representatives. The members' varied responsibilities, experiences, and backgrounds con- tribute greatly to developing local action plans that address cybersecurity risks. Additionally, information regarding cybersecurity, emerg- ing threats, and cybersecurity best practices are all shared as appropriate at the AMSC meetings. Sector personnel regu- larly interface and share information with industry through various formal and ad hoc committees and meetings such as Information Sharing and Intelligence Department of Homeland Security Efforts Implementing cybersecurity initiatives throughout the federal government. by lCDR MauReen D. JOhnsOn Port and Facility Activities Section Chief U.S. Coast Guard Pacifc Area Prevention Operations Planning Staff Traditional physical security protocols do not even begin to address cybersecurity threats. Maksym Yemelyanov / Hemera / Thinkstock