Innovation Hub

This is the place where you can read our newsletter ICEbreaker, our latest
articles as well as details of the next events we’ll be visiting.

Cyber Security for Cruise

by Asa Sargeant | December 26, 2019 | Products & Services | 0 Comments

ICE Technology Services, part of TheICEway ecosystem, has specialised in the cruise industry for more than 20 years and can help with any cruise IT needs. In the coming months we will look at the many products, services and solutions we can offer, beginning right now with CMCA, a cyber security product specifically designed for cruise from our sister brand, CRIBB Cyber Security…

When you think about cruise IT solutions, you might initially consider those solutions which directly help to increase crew efficiency and subsequently enable the optimisation of overall fleet performance. One area you may not instantly think about is cyber security, but as the rapid growth in cruise industry technology continues apace, this is something that is becoming ever more important.

On- and off-shore cyber-attacks are on the rise and unfortunately there have been very few frameworks in place to cover cyber security for the cruise industry – which is exactly why we decided to develop CMCA.

The CRIBB Maritime Cyber Assurance solution gives companies a robust framework enabling them to implement guidelines based upon the ISO27001 security standard and the UK government-backed Cyber Essentials scheme.

How will CMCA help?

- All company employees will be notified of all changes once CMCA has been correctly implemented, and they will have full clarity over their roles moving forward plus the relevant training will have been provided

- Companies will have a clearly defined policy for data protection

- They will have robust procedures in place for correctly dealing with data subject access requests

These are just a handful of the ‘wins’ that CRIBB Maritime Cyber Assurance will deliver to those choosing to embrace it, and with significant numbers being generated through cyber-attacks on a seemingly regular basis, it makes a lot of sense to seek the advice of one of our experts; for example…

1.34

A small number unless it precedes the word, ‘billion’; in November 2019, 1.34 billion records were exposed in 87 data breach incidents. That is just in November, alone, and it is not only the size of the attacks but also the size of the victims that is anxiety-inducing to say the least. Here in the UK the Labour Party were successfully targeted, whilst more than 1 million T-Mobile users were affected in the US.

14

A larger number but still one that experiences a major change in heft when used in a certain context; if we added the word ‘seconds’ after it, you may think that is not a long period of time. Quite right, and when you go further by saying that one ransomware attack is carried out on a business every 14 seconds in 2019, you can again see just how much importance we need to place on cyber security in today’s world.

32

This number is a lot larger than the previous one but it is still not particularly large in the grand scheme of things. However, when you apply a percentage sign after it, the scale certainly registers: 32%. Or, one in three. In a 2019 data breach investigations report, it was found that 32% of data breaches involve phishing.

Phishing is a fraudulent act in which an email is sent assuming the guise of a reputable company, with the intention of acquiring personal information such as passwords and credit card details. It sounds simple enough but without the proper measures in place, could you be confident that you would be able to successfully detect an incident in your own company?
Even the slightest of doubts about this could prove enormously costly – isn’t it better to be safe than sorry?

The experts at theICEway are waiting to help but in the meantime, here are 3 simple steps you can take right now towards establishing a greater degree of cyber resilience:

1. Prepare; know which of your assets will be best suited for dealing with potential attacks / data breaches. Establish what possible effects these may have and prepare counter measures where possible.

2. Monitor & detect; be aware of attack indicators and monitor for these consistently; if an attack occurs, be ready to act.

3. Respond & Review; make sure you have a response plan in place and that this is correctly actioned. Recovery is critical, so make sure that you respond swiftly, reviewing every detail in the aftermath to help prevent another occurrence.

Glossary

ISO27001 security standard – An international standard providing the specification for an information security management system that will optimise costs whilst working in line with international best practice.

Cyber Essentials – A government-backed cyber security certification scheme that provides a robust cyber security baseline all organisations can follow. The scheme addresses five key controls... Read more here...

Top Tip

TheICEway offers a complete digital solution for the cruise and travel industry, so be sure to look through our services and solutions to find what you are looking for. Alternatively, our experts are just a call away!

Leave a Comment