EMA Ship is committed to protecting information assets, operational data and personal information across all managed vessels and shore-based operations.
We recognize cyber risk as a critical operational and safety risk. Our approach focuses on prevention, awareness and rapid response to ensure business continuity and regulatory compliance.
All cyber-related processes are aligned with international maritime regulations, including IMO Resolution MSC.428(98) and industry best practices.
Cyber Risk Management (IMO 2021 Compliant)
EMA Ship implements a structured Cyber Risk Management framework in line with IMO 2021 requirements, integrating cyber risk into the Safety Management System (SMS).
Our cyber risk management approach includes:
- • Identification of cyber risks affecting shipboard and shore-based systems
- • Protection of critical operational technology (OT) and information technology (IT) systems
- • Procedures for detecting, responding to and recovering from cyber incidents
- • Regular review and improvement of cyber security controls
Cyber risk is treated as part of operational risk, not as a standalone IT issue.
Crew Cyber Awareness
Human awareness is a key element of cyber security at sea.
EMA Ship ensures that all crew members receive basic cyber awareness training, focusing on:
- • Phishing and social engineering risks
- • Safe use of email, removable media and onboard networks
- • Protection of passwords and access credentials
- • Reporting of suspicious cyber activity
Our goal is to reduce human-related cyber vulnerabilities and strengthen the first line of defense onboard.
Incident Reporting
Any suspected cyber security incident, data breach or abnormal system behavior must be reported immediately.
📩 Urgent reports should be sent to:
All reports are handled confidentially and investigated without retaliation against the reporting party.