@article{Erstad_Hopcraft_Palbar_Tam_2023,
	author = {Erstad, Erlend and Hopcraft, Rory and Palbar, Juan Dorje and Tam, Kimberly},
	title = {CERP: A Maritime Cyber Risk Decision Making Tool},
	journal = {TransNav, the International Journal on Marine Navigation and Safety of Sea Transportation},
	volume = {17},
	number = {2},
	pages = {269-279},
	year = {2023},
	url = {./Article_CERP_A_Maritime_Cyber_Risk_Decision_Erstad,66,1297.html},
	abstract = {An increase in the complexity of systems onboard ships in the last decade has seen a rise in the number of reported maritime cyber-attacks. To tackle this rising risk the International Maritime Organization published high-level requirements for cyber risk management in 2017. These requirements obligate organisations to establish procedures, like incident response plans, to manage cyber-incidents. However, there is currently no standardised framework for this implementation. This paper proposes a Cyber Emergency Response Procedure (CERP), that provides a framework for organisations to better facilitate their crew’s response to a cyber-incident that is considerate of their operational environment. Based on an operations flowchart, the CERP provides a step-by-step procedure that guides a crew’s decision-making process in the face of a cyber-incident. This high-level framework provides a blueprint for organisations to develop their own cyber-incident response procedures that are considerate of operational constraints, existing incident procedures and the complexity of modern maritime systems.},
	doi = {10.12716/1001.17.02.02},
	issn = {2083-6473},
	publisher = {Gdynia Maritime University, Faculty of Navigation},
	keywords = {Emergency Response Procedures, Safety and Security, Risk Mitigation, Maritime Cyber Resilience, Cyber Risk Management, Maritime Cyber Security, Maritime Cyber Threats, Cyber Incident Response}
}