Maritime Critical Infrastructure Protection: DHS Needs to Enhance Efforts to Address Port Cybersecurity

The nation’s maritime ports handle more than $1.3 trillion in cargo each year: a disruption at one of these ports could have a significant economic impact. Increasingly, port operations rely on computerized information and communications technologies, which can be vulnerable to cyber-based attacks. Federal entities, including the Department of Homeland Security's (DHS’s) Coast Guard and the Federal Emergency Management Agency (FEMA), have responsibilities for protecting ports against cyber-related threats. The Government Accountability Office (GAO) has designated the protection of federal information systems as a government-wide high-risk area since 1997, and in 2003 expanded this to include systems supporting the nation’s critical infrastructure. This statement by Gregory C. Wilshusen, Director, Information Security Issues, addresses (1) cyber-related threats facing the maritime port environment and (2) steps DHS has taken to address cybersecurity in that environment. In preparing this statement, GAO relied on work supporting its June 2014 report on cybersecurity at ports. (GAO-14-459). In its June 2014 report on port cybersecurity, GAO recommended that the Coast Guard include cyber-risks in its updated risk assessment for the maritime environment, address cyber-risks in its guidance for port security plans, and consider reestablishing the sector coordinating council. GAO also recommended that FEMA ensure funding decisions for its port security grant program are informed by subject matter expertise and a comprehensive risk assessment. DHS has partially addressed two of these recommendations since GAO’s report was issued.

• Record URL:
  http://www.gao.gov/assets/680/672973.pdf
• 
• Summary URL:
  http://www.gao.gov/assets/680/672974.pdf
• Corporate Authors:

  U.S. Government Accountability Office

  441 G Street, NW
  Washington, DC  United States  20548
• Authors:
  • Wilshusen, Gregory C
• Publication Date: 2015-10-8

Language

• English

Media Info

• Media Type: Digital/other
• Features: References;
• Pagination: 14p

Subject/Index Terms

• TRT Terms: Computer security; Government funding; Ports; Recommendations; Risk assessment
• Identifier Terms: U.S. Department of Homeland Security; U.S. Federal Emergency Management Agency
• Geographic Terms: United States
• Subject Areas: Marine Transportation; Planning and Forecasting; Security and Emergencies; Terminals and Facilities; I72: Traffic and Transport Planning; I82: Accidents and Transport Infrastructure;

Filing Info

• Accession Number: 01579170
• Record Type: Publication
• Report/Paper Numbers: GAO-16-116T
• Files: TRIS
• Created Date: Oct 23 2015 9:35AM