b'SAFETY MATTERSSAFETYNew and ProposedCybersecurity MeasuresERIC CHRISTENSEN // PVA DIRECTOR OF REGULATORY AFFAIRS & RISK MANAGEMENTR ecently,cybersecuritywastic passenger vessel industry now andmander, and captain of the port in the put back into the forefront ofin the future. execution of the port security mission. theMarineTransportation System (MTS) through a series of an- CYBER EXECUTIVE ORDER The amendments of most importance nouncementsbytheNationalSecu- On Feb. 21, 2024, the Cyber EO onto domestic passenger vessel operators rity Council, Department of Home- amendingregulationsrelatingtothearetheadditionofadefinitionof land Security (DHS), and U.S. Coastsafeguarding of vessels, harbors, ports,cyber incident and a requirement to Guardleadership.Theannounce- and waterfront facilities of the Unitedreport evidence of an actual or threat-ments were followed closely by an Ex- Statesamended33CodeofFederalened cyber incident involving or en-ecutiveOrder(EO),NavigationandRegulations(CFR)Part6.33CFRdangering any vessel, harbor, port, or VesselInspectionCircular(NVIC),Part6ProtectionandSecurityofwaterfront facility. The reports are re-and Notice of Proposed Rulemaking.Vessels, Harbors and Waterfront Facil- quired to be sent to the Coast Guard, Below is a summary of how these re- ities provides authorities to the CoastFederal Bureau of Investigation (FBI), cent developments impact the domes- Guardcommandant,districtcom- and the Cybersecurity and Infrastruc-ture Security Agency (CISA).TheEOdefinesacyberincidentas an occurrence that actually or immi-nentlyjeopardizes,withoutlawful authority, the integrity, confidentiali-ty, or availability of information or an informationsystem;orconstitutesa violation or imminent threat of viola-tion of law, security policies, security procedures, or acceptable use policies.The Cyber EO is available here.NVIC 02-24TheNVICprovidesguidancefor complyingwithreportingrequire-ments for breaches of security (BOS), suspiciousactivity(SA),transpor-tationsecurityincidents(TSI),and cyberincidents.TheBOS,SA,and TSI guidance in the NVIC supports the reporting requirements applicable to Maritime Transportation Security Act (MTSA)-regulated entities subject to33CFRPart101.305.Theseare FOGHORN 34'