Coast Guard Teams Up With New York-Area Companies on Cybersecurity

Goldman Sachs, Maher Terminals and others will share threat intelligence with the Port of New York and New Jersey

A Coast Guard boat patrolling the East River in New York.

Photo: angela weiss/Agence France-Presse/Getty Images

The U.S. Coast Guard is partnering with Goldman Sachs Group Inc., Maher Terminals LLC and other companies in the New York and New Jersey area to share intelligence on maritime cybersecurity threats and to organize exercises to test defenses.

香蕉视频苹果下载The creation of an intelligence-sharing framework between the private sector and the Port of New York and New Jersey is an evolution of existing links between the Coast Guard and the private sector. The two sides already meet through the Area Maritime Security Committee, which was established after the Sept. 11, 2001, terrorist attacks.

Under the new framework, that committee will create a cybersecurity advisory panel that will report to Capt. Jason Tama, captain of the Port of New York and New Jersey and commander of the Coast Guard’s Sector New York.

香蕉视频苹果下载“This is an acknowledgment of the threats and vulnerabilities facing the maritime sector and how significant they are, and recognition that there needs to be a collaboration between industry and government on this,” Capt. Tama said in an interview.

Frank Vesce, vice president for cybersecurity at Goldman, said in a statement that the financial sector has a vested interest in this area, given that even slight disruptions to maritime shipping could have a significant impact on commodities markets.

The companies will participate in regular exercises with the Coast Guard, Capt. Tama said, including attack simulations to test response plans, similar to those in other industries. There will also be an awards program created to recognize companies’ cybersecurity efforts. While this won’t serve as an endorsement, he said, the objective is to incentivize best practices.

香蕉视频苹果下载The partnership is similar to other public-private initiatives like industry-specific information sharing and analysis centers, or ISACs, which facilitate threat-intelligence sharing between companies. The Federal Bureau of Investigation also sponsors Infragard, which builds links between private-sector companies, the FBI and other law-enforcement agencies.

Andrew Lee, a partner at law firm Jones Walker LLP, said that partnerships like these can help prepare companies for attacks and establish response plans, citing his experience with Infragard in Louisiana.

The establishment of the committee and the framework comes as maritime authorities have become more vocal in warning about the dangers cyberattacks pose to vessels and ports.

Incidents that have caused alarm among authorities include the NotPetya malware attacks in 2017, which affected A.P. Moller-Maersk香蕉视频苹果下载 A/S, the world’s largest container shipping company. In 2018, a targeted ransomware attack that infected the Port of San Diego caused weeks of disruption to its administrative systems, although port operations were unaffected.

This summer, the Coast Guard published a marine alert describing how a ship en route to New York was disabled by malware in February, prompting Guardsmen and agents from the FBI to board the vessel and resolve the issue so that it could safely come into port.

Following that incident, the Coast Guard detailed a number of basic cybersecurity steps香蕉视频苹果下载 that vessel owners and operators should take to mitigate threats from malware. They include using basic security software and ensuring that external data devices aren’t connected to networks that control critical shipboard operations.

Write to James Rundle at