News Reaction: White House issues executive order aiming to bolster security at US ports

Yesterday the White House issued an executive order to enhance the cyber security of US ports in a bid to address maritime cyber threats, boost cyber security standards and deter bad actors as a result of “persistent and increasingly sophisticated malicious cyber campaigns”.

Biden’s executive order strengthens the Department of Homeland Security’s authority to address maritime cyber threats through implementing cyber security standards to ensure the security of American ports’ networks and systems and bringing domestic onshore manufacturing capacity back to America. This initiative aims to provide safe and secure cranes to U.S. ports.

The security of our critical infrastructure remains a national imperative, especially in an increasingly complex threat environment. Strengthening maritime cyber security and fortifying supply chains are essential steps to protect our nation’s interests.

Josh Kolleda, Transport Practice Director at NCC Group, commented:

“The recent executive order (EO) and the associated Notice of Proposed Rulemaking (NPRM) by the U.S. Coast Guard (USCG) is a positive move that grants the USCG additional authority to enhance cyber security within the marine transportation system and respond to cyber incidents.

“The NPRM outlines planned minimum cyber security requirements for U.S. flagged vessels, Outer Continental Shelf facilities, and U.S. facilities. Key provisions include:

• Designating a Cybersecurity Officer accessible to the USCG.
• Conducting Cybersecurity Assessments.
• Developing and submitting Cybersecurity Plans for USCG approval.
• Reporting all cyber incidents to relevant authorities.

“The NPRM draws parallels with existing Transportation Security Administration (TSA) Security Directives and Emergency Amendments for the rail and aviation industries. Lessons learned from these existing plans may inform the implementation of the NPRM.

“While we expect the final rulemaking to have many changes from this document. stakeholders within scope should prepare for compliance with the NPRM’s requirements, monitoring developments and adapting their programs accordingly.”