Recognising the need to go further than ensuring the safe integration of cyber technology, we have launched the next stream in its cyber and digitalisation suite of services. The new end-to-end set of solutions addresses the need to keep people, assets and systems secure within the constantly changing cyber security landscape.
In addition to establishing mandatory cyber security requirements since November 2016, we've evolved its services, to ensure the provision remains consistently relevant, robust and up-to-date. From guidance and training to vulnerability and impact assessment we can help clients develop a cyber security strategy that will work for their business now and in the future, ensuring readiness to operate cyber-enabled assets safely and securely.
We are at the forefront of the safe adoption of digital technologies within the marine and offshore sector, and has pioneered a ‘total-systems’ approach, with a number of industry firsts developed to help a wide range of stakeholders navigate the huge opportunities for improving efficiency and performance – but also the various security and safety challenges posed.
In February 2016, we've issued the first guidance on cyber-enabled ships: ‘Deploying Information and Communications Technology in Shipping – LRQA’s Approach to Assurance’. This identified the elements that constitute a cyber-enabled ship and the activities that need to take place to ensure that cyber technology does not introduce a safety risk, effectively providing the industry with a route map to understanding the implications of digital technology.
This was followed with the introduction of the industry’s first ShipRight procedure, which details our framework for accepting cyber technology at varying levels of autonomy – from ships with the most basic decision support tools to vessels that are fully autonomous – identifying the assessments, processes and considerations that need to be followed. Cyber security is addressed as one of the six risk areas studied for connected ships and requirements are included within the ShipRight Procedure; without meeting these it is not possible to certify the level of autonomy as safe.
The new set of services is built on an easy to use model that provides clarity and allows evolution in line with emerging threat patterns and the changing regulatory environment, designed to help clients understand how cyber secure they are now and what level of security they want to achieve in the future. The new offer will deliver cyber security gap analysis and other readiness services to owners, operators and other clients against the US Coast Guard Strategy on cyber security and forthcoming IMO regulations as well as the cyber security best practice already established in other industry sectors, such as Naval.
Our cyber security specialists will work with clients to identify the specific risks posed to their people, assets and business, and co-create a tailored cyber security management plan. They will also work to incorporate cyber security across their organisation, ensuring that people know how to respond effectively if something goes wrong.
LRQA's Marine & Offshore Director, Nick Brown, commented: "We understand that cyber security is essential to our clients’ business, but something they do not want to impact or complicate their day-to-day operations. We will work with our clients to develop a cyber risk management plan specifically tailored to their business and operational needs, with the aim to embed cyber security seamlessly within their organisation."
Brown continued, "We recognise the importance of having the best capabilities, so have chosen to work with QinetiQ, a leading science and engineering company operating primarily in the defence, security and aerospace markets. Through this unique partnership, we can bring the benefits of QinetiQ’s world-leading cyber security skills, knowledge and experience, to complement our own expertise in marine and offshore risk management."
QinetiQ's International Maritime Consultancy and Software Director, Vittorio Vagliani, added: "QinetiQ is excited about working with such a reputable and globally known business as LRQA to provide Cyber services to the maritime market. QinetiQ’s long history in providing Cyber services to the defence and critical infrastructure industries combined with LRQA's experience in certification and advice makes this partnership a unique proposition to ship owners and operators. We are excited about bringing real value to the industry and support its adoption of stronger cyber security practices, protecting a critical global industry."