CISA, Coast Guard Urged to Create Cybersecurity Testbed for Maritime Operational Technologies

A Cyberspace Solarium Commission 2.0 report found that cybersecurity experts are calling on the Cybersecurity and Infrastructure Security Agency and the U.S. Coast Guard to set up a testbed for maritime equipment.

According to the report, experts want CISA to establish a testing capability similar to the Department of Energy’s Cyber Testing for Resilient Industrial Control Systems, a program where the agency partners with stakeholders to test cyber resilience for operational technology components. The DOE CyTRICS program includes expert testing, vulnerability information sharing and component design and manufacturing enhancements.

Cyber experts are concerned that U.S. ports, which they deem critical infrastructure, are left open to attacks, FedScoop reported Tuesday.

According to the report, an OT cybersecurity testbed could be operated by the Coast Guard and CISA’s National Infrastructure Simulation and Analysis Center. Under the proposed partnership, the CISA would provide national laboratories to the Coast Guard to test maritime components for cyber lapses.

The proposed CISA-Coast Guard partnership would start foreign-made crane testing before expanding into other maritime OT.

The report also highlighted the need for the Coast Guard to participate in cyber risk mitigation grant programs, develop cybersecurity education and workforce programs and increase resources for infrastructure security.