Port security, maritime cyber defenses targeted in Biden executive order
In the wake of continued threats toward critical infrastructure, President Biden issued an executive order Wednesday that his administration says is aimed at bolstering security of the nation’s ports and strengthening maritime cybersecurity.
Biden officials also announced plans to spent $20 billion from Investing in America funds to “bring domestic onshore manufacturing capacity back to America” to provide secure cranes to U.S. ports. They note that the complex system of ports, terminals, vessels, waterways and land-side connections that make up the nation’s Marine Transportation System supports $5.4 trillion in economic activity yearly.
The system collectively employs more than 31 million people and supports 95% of cargo entering the U.S.
Biden officials say MTS owners and operators rely on digital systems to enable their operations, as well as for ship navigation, movement of cargo, engineering, safety and security monitoring.
The increasing digital interconnectedness of the economy and supply chains “have also introduced vulnerabilities that, if exploited, could have cascading impacts on America’s ports, the economy, and everyday hard-working Americans,” officials said.
The executive order will give the U.S. Coast Guard express authority to respond to malicious cyber activity in the nation’s MTS by requiring vessels and waterfront facilities to mitigate cyber conditions that may endanger the safety of a vessel, facility or harbor.
The order also mandates reporting of cyber incidents or threats endangering any vessel, harbor, port or waterfront facility. The Coast Guard will also have authority to control the movement of vessels presenting a “known or suspected” cyber threat to U.S. maritime infrastructure and be able to inspect those vessels and facilities that pose a threat to cybersecurity.
Additionally, the Coast Guard will issue a “maritime security” directive on cyber risk management actions for ship-to-shore cranes manufactured by China and located at U.S. commercial strategic ports.
This means crane owners and operators must acknowledge the directive and take a series of actions on these cranes and associated Information Technology (IT) and Operational Technology (OT) systems.
Biden’s administration say the order is critical to securing maritime infrastructure’s digital ecosystem and addresses several vulnerabilities that have been identified in the updated U.S. Maritime Advisory, 2024-00X – Worldwide Foreign Adversarial Technological, Physical, and Cyber Influence, also released Wednesday.
The Coast Guard has also issued proposed rule on cybersecurity for the MTS meant to strengthen the digital systems by establishing minimum cybersecurity requirements that meet international and industry-recognized standards to best manage cyber threats.
According to Biden officials, the U.S. House Homeland Security Committee and Select Committee on the Chinese Communist Party deepened their joint investigation into security vulnerabilities in the nation’s maritime sector, particularly relating to CCP cybersecurity and supply chain risks.
The committee requested Swiss Company ASEA Brown Boveri Ltd. (ABB) testimony on its ‘concerning’ ties to Chinese state-owned enterprises, officials said. Some cyber experts said Wednesday they approve of the order with the complex threat environment facing the U.S. and its port system.
Some cyber experts said Wednesday they approve of the order with the complex threat environment facing the U.S. and its port system.
‘Completely Makes Sense’
“It is not only systems that have been infiltrated by foreign states. In my discussions with CISOs across the country, many believe there are employees within their organization that are capable of acting in alignment with foreign states,” says Troy Batterberry, CEO of EchoMark.
“Unfortunately, ninety percent of organizations are completely unprepared for the risks imposed by insiders. Dealing with insider risk is the next big area of growth for the cybersecurity industry.”
Emily Phelps, Director of Cyware, believes the order is a good step towards securing critical national infrastructure through mandating enhanced cyber defenses and incident reporting.
“The focus on the maritime sector, especially given the strategic importance of ports to our economy and supply chain, is timely and essential,” Phelps says. “This move, coupled with the substantial investment in port infrastructure, demonstrates a proactive approach to cybersecurity, ensuring the resilience of vital assets against emerging threats.”
“This completely makes sense. However, this threat is nothing new overall. Government extension of authority to support mitigating the threat is just a sign of validation on the reality of the threat,” adds Neal Dennis, Cyware’s Senior Threat Intelligence Specialist.