Cyber incidents are no longer an IT issue. They are an operational and safety risk. Marpoint’s ICT Cybersecurity Drill is a practical, scenario-based service that helps shipping companies meet regulatory requirements while ensuring crews know how to respond correctly when incidents occur.
The drill is structured around the complete cyber incident lifecycle expected by regulators and auditors.
The Marpoint ICT Cybersecurity Drill is based on real-life onboard situations frequently observed during inspections, audits, and incident investigations.
Crew members receive a suspicious email and must:
A USB device introduces suspicious behavior. The drill trains crews to:
Risks are introduced through personal or shared mobile devices connected onboard.
Crew response when critical files are unavailable or damaged, focusing on:
The drill is typically completed within a single scheduled session per vessel.
Each scenario is executed in a controlled environment, focusing on behavior, awareness, and procedural compliance.
Crew actions during the drill align with internationally recognized principles of identification, protection, response, and recovery, providing defensible audit evidence.
Stop treating cyber-drills as a checkbox. Start treating them as a shield.
Marpoint’s ICT Cybersecurity Drills turn mandatory requirements into a streamlined, high-performance process.
From compliance to confidence in four clicks:
Cyber incidents are no longer limited to shore-side IT systems. They increasingly originate onboard, through everyday crew interaction with email, removable media, and mobile devices.
Under the ISM Code, companies are required to ensure that cyber risks are appropriately addressed within the Safety Management System (SMS). Since 1 January 2021, this requirement has been reinforced through guidance issued by the International Maritime Organization.
Auditors and inspectors now expect practical evidence that: Crews can recognize cyber risks Correct procedures are understood Cyber incidents are included in emergency preparedness Policies alone are no longer sufficient.
The Marpoint ICT Cybersecurity Drill is a unique, crew-centric training service designed to prepare shipboard personnel for the full lifecycle of a cyber incident.
Unlike traditional cybersecurity training or tabletop exercises, the drill focuses on real crew actions onboard, not theoretical responses or IT troubleshooting.
The drill trains crews to:
The Marpoint ICT Cybersecurity Drill supports alignment with:
Yes.
The drill is specifically designed to train crews to identify, protect, respond to, and recover from cyber incidents commonly encountered onboard, including phishing emails and infected removable media.
Yes.
Each drill includes official documentation and a confirmation letter that may be presented to auditors, Flag State, Class, or Port State Control as evidence of crew training and cyber emergency preparedness.
No.
The drill is conducted in a controlled environment using simulated scenarios. No real malware is deployed, and no operational, navigational, or safety-critical systems are affected.
No direct interaction with safety-critical OT systems occurs.
The drill focuses on crew awareness, communication, escalation, and initial containment actions related to ICT systems, in line with SMS and cyber risk management principles.
Participation typically includes:
The focus is on demonstrating correct roles, responsibilities, and communication pathways.
The drill can be conducted:
The frequency should align with company SMS procedures and audit cycles.
Many companies conduct cybersecurity drills annually or prior to DOC verification to demonstrate continuous compliance and crew awareness.
No.
The drill complements existing policies and technical measures by validating that crews understand procedures and can apply them correctly during an incident.
Deliverables include:
These documents are designed to be audit-ready.
Yes.
Each drill is executed and documented per vessel, ensuring traceability and relevance for audits and inspections.
