Impacting shipping operators
Maritime operators sailing to the United States are facing mounting pressure to comply with new US federal cybersecurity regulations that came into force last month. The rules, enforced by the US Coast Guard since July 16, 2025, require US-flagged vessels and port facilities to report cyber incidents and strengthen onboard cybersecurity governance.
The changes mark a significant regulatory shift, with potential global implications for shipping operators, particularly those in the Middle East and Africa, whose fleets frequently travel to US ports or operate under mixed international standards.
Cybersecurity threats in the maritime sector are on the rise. According to data from maritime cybersecurity firm Cydome, cyber incidents targeting commercial shipping companies occur approximately every three days.
These incidents range from relatively minor issues to events with serious operational and safety consequences. However, many operators continue to struggle with converting existing cybersecurity guidance into actionable protocols.
The new US regulations cover a wide range of operational environments, including ships, offshore platforms, and port terminals. They go beyond basic reporting and now mandate structured procedures for incident response, cybersecurity staffing, and IT governance. Compliance failures carry significant risks.
The US Coast Guard may issue fines, suspend vessel certificates, detain ships in port, or even order a complete stop to cargo operations.
Key challenge
A key challenge is the nature of incidents now deemed reportable. Routine glitches—such as temporary satellite communication outages, GPS spoofing, partial software updates, or unauthorised USB devices—can all trigger mandatory reporting. In some cases, a voyage may involve dozens of such incidents, each requiring documentation.
In response to the new demands, Cydome has introduced a digital platform to help operators navigate the reporting process. The tool is designed to streamline internal escalation from shipboard IT staff to chief information security officers and upper management. It also integrates the US Coast Guard’s reporting templates and submits data directly to the National Response Center, allowing operators to document cyber events in real time.
Although developed in Israel, the platform is gaining interest among international fleets, particularly in Europe and the Middle East.
Nir Ayalon, CEO and Founder of Cydome, said: “This tool puts operators back in control. We designed it to be simple enough for maritime companies, yet powerful enough to deliver a full audit trail for inspectors. With enforcement now real, the sector needs a no-obstacle solution, and we’re proud to deliver exactly that.”
Dr Gary Kessler, former cyber official at the US Coast Guard and a leading voice in maritime cybersecurity, added: “Policy alone won’t keep ships safe; crews need a clear, repeatable way to act. By translating every [US] Coast Guard requirement into a straightforward process, Cydome delivers that clarity. Because the solution is class‑endorsed, the same disciplined approach works across multi-class fleets and the new European rules as well.”
EU action
The EU’s cybersecurity directive, NIS2, took effect earlier this year and is expected to be fully enforced in 2026. Gulf-based maritime operators with transatlantic routes or global fleets are beginning to assess how such tools can ensure they remain in compliance with both US and EU regulations.
Experts warn that legislation alone will not improve cybersecurity on board vessels. Dr Gary Kessler, a former cyber official with the US Coast Guard, said that without transparent, repeatable processes for crews, regulations may fall short. He added that automated workflows and audit-ready records are now essential tools for compliance in modern maritime operations.
The Middle East is home to several major shipping lines and port operators that may be affected by both US and EU regulations. The UAE, in particular, is a strategic hub for global maritime traffic, with Dubai’s Jebel Ali Port among the busiest in the world. Regional operators are likely to face pressure to adopt international cybersecurity standards, especially as cyber threats in the transport and logistics sectors continue to rise.
A 2024 report from Allianz Global Corporate & Speciality found that cyber incidents now rank among the top five business risks in shipping, driven in part by increased digitalisation of navigation and cargo management systems. Meanwhile, the International Maritime Organization (IMO) has urged member states to take urgent action to secure critical infrastructure.
While tools like Cydome’s platform may ease the compliance burden, analysts say the broader issue is that maritime cybersecurity remains underfunded and inconsistently regulated across jurisdictions. As enforcement efforts ramp up in the US and Europe, operators across the Middle East and Africa will need to reassess their cyber readiness to avoid operational disruption and legal penalties.
Hero image: Cybersecurity threats in the maritime sector are on the rise. Credit: John Mark Barit
