With Federal maritime cybersecurity reporting rules entering enforcement on July 16, U.S.-bound maritime operators are now federally required to report cyber incidents, marking a turning point for shipowners, operators, and offshore stakeholders.
In response, Cydome launched a free reporting tool to simplify compliance and meet the Coast Guard’s cyber‑reporting expectations.
“This tool puts operators back in control,” says Nir Ayalon, CEO and founder of Cydome. “We designed it to be simple enough for maritime companies, yet powerful enough to deliver a full audit trail for inspectors. With enforcement now real, the sector needs a no-obstacle solution, and we’re proud to deliver exactly that.”
Key takeaways:
· Cydome data shows that roughly every three days, a shipping company faces a cyber threat, yet many still struggle to operationalize existing guidance. The new U.S. regulation, applying to vessels, facilities, terminals, and outer continental shelf (OCS) facilities, mandates not only incident reporting, but also cybersecurity staffing, procedures, and governance.
· Many of the incidents now deemed reportable are everyday glitches, such as GPS spoofing or jamming, short VSAT dropouts, partial software updates that require a system restart, or an unauthorized USB stick being plugged into a bridge computer; a sustained loss or degradation of communications (e.g., satellite, VHF, or navigation‑data links), or a series of mistyped passwords that lock an account, can also trigger a mandatory report. Taken together, these otherwise routine events can generate dozens of mandatory reports during a single voyage.
· Cydome’s digital platform provides a step-by-step incident workflow, complete with built-in U.S. Coast Guard templates that are pre-filled and auto-routed for seamless submission.
· The tool enables internal escalation, from IT to CISO to senior management, as well as formal reporting to regulators, helping companies stay compliant.
· It is built to accommodate both large organizations with dedicated IT or cyber teams and companies with more limited in-house capabilities, and is designed for the operational realities of multi-class fleets, where vessels may fall under different standards and reporting chains.
