USCG releases draft NVIC on facility cyber security

Written by Nick Blenkey
image description

JULY 13, 2017 — The U.S. Coast Guard has released a draft of its planned Navigation and Vessel Inspection Circular (NVIC) entitled “Guidelines for Addressing Cyber Risks at Maritime Security Act (MTSA) Regulated Facilities).

The draft NVIC says that MTSA-regulated facilities are instructed to analyze vulnerabilities with computer systems and networks in their Facility Security Assessment (FSA).

To assist Facility Security Officers (FSOs) in completing this requirement the draft NVIC provides guidance and recommended practices for MTSA regulated facilities to address cyber related vulnerabilities.

It looks at how existing requirements relate to cybersecurity measures, and what would be recommended to be included in the Faculty Security Plan.

It includes draft guidance on implementing a cyber risk management governance program to include establishment of a cyber risk management team, policies, programs, and identification of critical systems. This guidance is based on the National Institute of Standards and Technology (NIST) Cybersecurity Framework (CSF). and NIST

The Coast Guard is requesting that comments be submitted to the docket by September 11, 2017.

Download the draft NVIC HERE

 

Categories: Safety and Security Tags: , , ,

Leave a Reply