A profile implements the NIST Cybersecurity Framework, which was developed in 2014 to address and manage cybersecurity risk in a cost-effective way based on business needs and without placing additional regulatory requirements on businesses. The profile is how organizations align the Framework’s cybersecurity activities, outcomes, and informative references to organizational business requirements, risk tolerances, and resource allocations. Comments are requested by Sept. 7, 2017.
In this post, Capt. Ryan Manning, chief of the Office of Port and Facility Compliance, talks about the progress made between the Coast Guard and partner organizations to continue building cybersecurity profiles and the importance of constant stakeholder engagement.
The U.S. Coast Guard, the National Institute of Standards and Technology (NIST), and maritime industry stakeholders have developed a voluntary cybersecurity “Profile” for Maritime Bulk Liquid Transfer (MBLT) facilities. This Profile will be released Thursday at the American Petroleum Institute’s 11th Annual Cybersecurity Conference in Houston.
October is nationally recognized as Cyber Security Awareness Month, and there is no better time to discuss the importance of cybersecurity and the Coast Guard’s role in cyber risk management.
The director of Coast Guard inspections and compliance provides a summary of remarks made, and questions asked, at the recent cybersecurity workshop, hosted by the National Institute for Standards and Technology. His remarks focused on work done by the Coast Guard and partner organizations to building security profiles, using the NIST Framework, to secure the bulk liquid transport sector.