The presentation can be presented in 1 format: AVI (5.3Gb - Duration - 2h23m).
 
INDEX
Foreword
1. Cyber security attributes
2. Ship assets and cyber security
3. Cyber security and risk management
4. Identify threats
5. Identify vulnerabilities
6. Assess risk exposure
7. Develop protection and detection measures
8. Establish contingency plans
9. Respond to and recover from cyber security incidents
10. Recommendations to crew members
 
The purpose of these course is to improve the safety and security of seafarers, the environment, the cargo, and the ships. The guidelines aim to assist in the development of a proper cyber risk management strategy in accordance with relevant regulations and best practises on board a ship with a focus on work processes, equipment, training, incident response and recovery management. Shipping is relying increasingly on digital solutions for the completion of everyday tasks. 
The rapid developments within information technology, data availability, the speed of processing and data transfer present shipowners and other players in the maritime industry with increased possibilities for operational optimisation, cost savings, safety improvements and a more sustainable business. However, these developments to a large extent rely on increased connectivity often via internet between servers, IT systems and OT systems, which increases the potential cyber vulnerabilities and risks. The guidelines explain why and how cyber risks should be managed in a shipping context. 
The supporting documentation required to conduct a risk assessment is listed and the risk assessment process is outlined with an explanation of the part played by each component of cyber risk. This publication highlights the importance of evaluating the likelihood and threat in addition to the impact and vulnerabilities when conducting a cyber risk assessment. Finally, this course offers advice on how to respond to and recover from cyber incidents.
The maritime sector is a vital part of the global economy, whether it is carrying cargo, passengers or vehicles. Ships are becoming increasingly complex and dependent on the extensive use of digital and communications technologies throughout their operational life. Poor security could lead to significant loss of customer and/or industry confidence, reputational damage, potentially severe financial losses or penalties, and litigation affecting the companies involved.
 
Cyber security is not just about preventing hackers gaining access to systems and information, potentially resulting in loss of confidentiality and/or control. It also addresses the maintenance of integrity and availability of information and systems, ensuring business continuity and the continuing utility of digital assets and systems. 
Personnel security aspects are also important. 
The course is intended to be used as an integral part of a company's or ship's overall risk management system and subsequent business planning, so as to ensure that the cyber security of the ship, or fleet, is managed cost effectively as part of mainstream business. 
 
This course considers the cyber security requirement for ships whether underway, moored or berthed, advocating a coherent, ship – or fleet – wide approach. It is intended to complement the ship security standards and their respective requirements, by providing additional guidance on the cyber-related aspects of the security measures set out. It therefore makes extensive reference to, and assumes knowledge of, the definitions and concepts contained within these regulations. 
This course uses principles rather than national legislation or specific standards to help promote good practice. However, the specific cyber security measures implemented should depend on the profile of the ship, its use and the nature of the cargoes handled. The rapid evolution in the use of, and reliance upon, digital (computer-based) and communication technologies, as well as the advances in automation and the potential for integration of multiple electronic systems supporting management functions and business applications, increases the importance of addressing inherent vulnerabilities. It is therefore vital that ship owners, operators and masters understand and implement appropriate and proportionate measures to address the resilience and cyber security issues that arise. Only by doing so can they fully meet their responsibilities for the secure and safe operation of their ships. 
While this course is concerned solely with the cyber security of ships, it recognises that, with a large proportion of security breaches caused by people and poor processes, it is essential that personnel, process and physical aspects directly related to these technological maritime systems are also considered and appropriate measures put in place.
 
Knowledge control is conducted through interviewing at lectures and demonstration of students' practical skills (appropriate actions) in practical classes. The result of training is the assessment of the competence of the listener by the instructor, conducted by the method of demonstrating the actions of the trainees in practical classes.
Initial control - passing the exam using written or computer tools. Initial control, practical demonstration of competence are carried out according to the assessment criteria and procedures developed in accordance with the assessment criteria and procedures in accordance with IMO Model Course No. 3.12 "Assessment, Examination and Certification of Seafarers" according to the criteria for assessing the competence set out in The Guidelines on Cyber Security Onboard Ships Version 4 - 2021.
The control questions cover all key aspects of the course program. The exam paper option contains ten theoretical questions and one practical question. Each theoretical question has a weight of 10%. The assessment of the success of the exam is calculated as the sum of the interest received by the trainee to the maximum possible amount. For trainees who have passed an examination with an achievement score of 80% or higher, an appropriate documentary evidence of training is issued (Certificate). The duration of the exam and the demonstration of competence is 1 hour.
In the event of a successful completion of the training, the trainee should be issued a course completion document for “Cyber Security Awareness Course for Seafarers - COMPUTER BASED TRAINING (CBT)”.