Maritime cyber security.
Ready to deploy.

The core document required under IMO 2021 and the ISM Code. Fully editable Word template covering all mandatory CSMP sections. Vessel-specific guidance notes included throughout.

Step-by-step response procedures for ransomware, GPS spoofing, ECDIS failure, and unauthorised access. Written for vessel operators, not IT teams. Includes hard-copy format for bridge use.

Covers personal device usage onboard, USB restrictions, social media, and satellite bandwidth. Plain language for seafarers. Includes crew sign-off sheet.

Covers how crew, shore staff, and vendors connect remotely to vessel systems. Aligned to IACS UR E26 §4.2.6 remote access requirements. Includes MFA and session logging guidance.

Covers port agents, service engineers, and remote access vendors connecting to vessel systems. Includes a structured vendor questionnaire and access approval workflow.

What to verify before entering port: remote access disabled, OT systems isolated, USB ports secured, crew briefed. One-page format — laminate and keep on the bridge.

Self-assessment checklist for DPAs and ship managers reviewing vessel cyber posture against BIMCO and IMO guidelines. Structured by Identify, Protect, Detect, Respond, Recover.

Walks through verifying that bridge systems, engine room, and crew networks are properly isolated. Covers VLAN configuration, firewall rules, and inter-zone traffic controls.

Based on IHO and manufacturer guidelines. Covers OS patching, chart update procedures, USB hygiene, and access control. Suitable for any ECDIS type.

Walks a maritime SME through what insurers check before issuing or renewing a cyber policy. Increasingly relevant as premiums rise and coverage requirements tighten.

Step-by-step hardening for MikroTik routers in maritime environments. VLAN segmentation, firewall rules, disabling unused services, secure remote access. Written for vessel IT staff.

Baseline firewall policy set for vessel environments: OT/IT segregation rules, VSAT traffic management, remote access control. Exportable config with full annotation.

Recommended VLAN architecture separating bridge, engine, crew, and guest networks. Includes topology diagram and switch configuration notes for Cisco, Ubiquiti, and MikroTik.

Practical guide for setting up secure remote monitoring without exposing vessel systems. Covers MikroTik and Fortigate implementations with step-by-step configuration.

CSMP + Incident Response Plan + Pre-Port Checklist + Crew Awareness Deck + Acceptable Use Policy. Everything needed for survey-ready documentation in one package.

MikroTik Hardening Guide + Fortigate Policy Template + VLAN Segmentation Blueprint. The complete technical package for hardening a vessel network from scratch.

Complete auditor's toolkit: scope template, interview questions, technical checklist, finding severity matrix, and report template. Ready for a junior consultant or DPA to conduct a full vessel audit.

Automated playbook targeting MikroTik and Linux-based systems common on vessels. Disables unused services, enforces password policy, and generates a compliance inventory report.

Audits patch levels, open shares, local admin accounts, and RDP exposure across shore-based Windows machines. Outputs a structured compliance summary report.

Targets Linux systems used onboard or in shipping offices. Disables root SSH, configures UFW, sets up fail2ban, outputs a compliance summary. Tested on Ubuntu 22.04 and Debian 12.

A 20-slide PowerPoint presentation Masters can deliver to crew. Covers phishing, USB risks, social engineering, and incident reporting. Real maritime examples. Plain language throughout.

One-page briefing card and sign-off sheet for new joiners. What they must and must not do onboard regarding technology. Designed to print, laminate, and hand over at sign-on.

Three ready-to-run cyber incident scenarios for shore teams: ransomware hitting the fleet management system, GPS spoofing at sea, and a crew phishing compromise. Includes facilitator notes.