The Office of Port and Facility Compliance (CG-FAC) announced today the release of a Content Preview of the Passenger Operations Cybersecurity Framework Profile, which is the result of a collaborative effort between the Coast Guard, the National Institute of Standards and Technology’s (NIST) National Cybersecurity Center of Excellence, and key industry stakeholders in the field of safety and security.
The Content Preview highlights the approach to profile mission objectives in terms of cybersecurity, breaking them down into subcategories and assigning priority to each area related to cyber priorities.
A profile implements the NIST Cybersecurity Framework, which was developed in 2014 to address and manage cybersecurity risk in a cost-effective way based on business needs and without placing additional regulatory requirements on businesses. The profile is how organizations align the Framework’s cybersecurity activities, outcomes, and informative references to organizational business requirements, risk tolerances, and resource allocations.
The first profile covering bulk liquid transfer operations was released Nov. 10, 2016.
This blog is not a replacement or substitute for the formal posting of regulations and updates or existing processes for receiving formal feedback of the same. Links provided on this blog will direct the reader to official source documents, such as the Federal Register, Homeport and the Code of Federal Regulations. These documents remain the official source for regulatory information published by the Coast Guard.